CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0846

django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS settings, which allows remote attackers to include and read arbitrary files via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.debian.org/security/2015/dsa-3230
https://github.com/jamesturk/django-markupfield/blob/master/CHANGELOG
http://www.debian.org/security/2015/dsa-3230
https://github.com/jamesturk/django-markupfield/blob/master/CHANGELOG

Products affected by CVE-2015-0846

Django-Markupfield Project » Django-Markupfield » Version: 1.3.1

cpe:2.3:a:django-markupfield_project:django-markupfield:1.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0846

Products

Pricing

Contact Us