Description
A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or later, allows remote authenticated users to execute arbitrary code, leading to privilege escalation.
Remediation
References
Related Vulnerabilities
WordPress Plugin LayerSlider Cross-Site Request Forgery (4.6.1)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6131)
WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)
WordPress Plugin tcS3 Cross-Site Scripting (2.1.1)
Oracle Application Server Resource Management Errors Vulnerability (CVE-2007-2120)