Description
Untrusted search path vulnerability in python.exe in Python through 3.5.0 on Windows allows local users to gain privileges via a Trojan horse readline.pyd file in the current working directory. NOTE: the vendor says "It was determined that this is a longtime behavior of Python that cannot really be altered at this point."
Remediation
References
Related Vulnerabilities
WordPress Plugin Answer My Question SQL Injection (1.3)
Oracle Database Server Other Vulnerability (CVE-2006-0552)
RubyGems Improper Input Validation Vulnerability (CVE-2015-4020)
MySQL CVE-2017-3291 Vulnerability (CVE-2017-3291)
Payara URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41699)