CVE-2011-0698

Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.

Published: Feb 14, 2011
Updated: May 9, 2024
CVE: CVE-2011-0698
GHSA: GHSA-7g9h-c88w-r7h2
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
djangoproject / django	1.1	1.1.x
djangoproject / django	1.1.0	1.1.0.x
djangoproject / django	1.1.2	1.1.2.x
djangoproject / django	1.1.3	1.1.3.x
djangoproject / django	1.2	1.2.x
djangoproject / django	1.2.1	1.2.1.x
djangoproject / django	1.2.2	1.2.2.x
djangoproject / django	1.2.3	1.2.3.x
djangoproject / django	1.2.4	1.2.4.x
Django	1.1.0	1.1.4
Django	1.2.0	1.2.5

http://openwall.com/lists/oss-security/2011/02/09/6
http://secunia.com/advisories/43230
http://www.djangoproject.com/weblog/2011/feb/08/security/
http://www.mandriva.com/security/advisories?name=MDVSA-2011:031
http://www.securityfocus.com/bid/46296
http://www.vupen.com/english/advisories/2011/0372
http://www.vupen.com/english/advisories/2011/0439

Vulnerability Database

289,689

CVE-2011-0698