CVE-2013-4510 – trytond

Package

Manager: pip
Name: trytond
Vulnerable Version: =3.0.0

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00892 pctl0.74687

Details

Tryton Directory Traversal vulnerability Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a report.

Metadata

Created: 2022-05-17T04:58:00Z
Modified: 2024-11-18T22:05:12Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qjmc-wwmw-cq9r/GHSA-qjmc-wwmw-cq9r.json
CWE IDs: ["CWE-22"]
Alternative ID: GHSA-qjmc-wwmw-cq9r
Finding: F063
Auto approve: 1