Description
Storage.save in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1 allows directory traversal if crafted filenames are directly passed to it.
Remediation
References
Related Vulnerabilities
WordPress Plugin Insert Html Snippet Cross-Site Request Forgery (1.2)
Wordpress Plugin Backup Migration CVE-2023-6553 Vulnerability (CVE-2023-6553)
WebLogic Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-1000180)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0837)