Security Advisory

CVE-2021-31542

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-05 00:00:00

Last updated 2024-08-03 23:03:33

Assigner mitre

State PUBLISHED

Description

In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.

← Browse all CVEs View on cve.org ↗