Tavis Rudd : Security Vulnerabilities, CVEs,
Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/.
Max CVSS
7.2
EPSS Score
0.04%
Published
2005-05-17
Updated
2008-09-05
1 vulnerabilities found