Security Advisory
CVE-2021-46897
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.22.3 allows upward protected/..%2f..%2f path traversal when serving protected media.