Description
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.
Remediation
References
Related Vulnerabilities
WordPress Plugin Woo Import Export Arbitrary File Deletion (1.0)
Oracle JRE Incorrect Default Permissions Vulnerability (CVE-2024-20921)
WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9861)
Oracle Database Server CVE-2015-0457 Vulnerability (CVE-2015-0457)