RSS   Vulnerabilities for 'Babel'   RSS

2021-10-20
 
CVE-2021-42771

CWE-22
 

 
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.

 
2021-04-29
 
CVE-2021-20095

CWE-22
 

 
Relative Path Traversal in Babel 2.9.0 allows an attacker to load arbitrary locale files on disk and execute arbitrary code.

 

 >>> Vendor: Pocoo 2 Products
Jinja2
Babel


Copyright 2022, cxsecurity.com

 

Back to Top