Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-28459: Fix path traversal in static HTML export · pretalx/pretalx@60722c4

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export (a non-default feature). Users were able to upload crafted HTML documents that trigger the reading of arbitrary files.

CVE
Open in Source

@@ -115,7 +115,9 @@ def dump_content(destination, path, getter): if path.endswith(“/”): path = path + “index.html”
path = Path(destination) / path.lstrip(“/”) path = (Path(destination) / path.lstrip(“/”)).resolve() if not Path(destination) in path.parents: raise CommandError(“Path traversal detected, aborting.”) path.parent.mkdir(parents=True, exist_ok=True)
with open(path, “wb”) as f: @@ -131,6 +133,14 @@ def get_mediastatic_content(url): else: raise FileNotFoundError()
# Prevent directory traversal, make sure the path is inside the media or static root local_path = local_path.resolve(strict=True) if not any( path in local_path.parents for path in (settings.MEDIA_ROOT, settings.STATIC_ROOT) ): raise FileNotFoundError()
with open(local_path, “rb”) as f: return f.read()

Related news

GHSA-wh3w-jcc7-mhmf: pretalx vulnerable to path traversal in HTML export

pretalx before 2.3.2 allows path traversal in HTML export (a non-default feature). Users were able to upload crafted HTML documents that trigger the reading of arbitrary files.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE