CVE-2015-5601

Publication date

2019-07-29 15:41:14

Family

mitre

State

PUBLISHED

Description

edx-platform before 2015-07-20 allows code execution by privileged users because the course import endpoint mishandles .tar.gz files.