Security Advisory

CVE-2017-1000052

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-13 20:00:00

Last updated 2024-08-05 21:53:06

Assigner mitre

State PUBLISHED

Description

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions.

← Browse all CVEs View on cve.org ↗