Download
| Alert*
oval:org.secpod.oval:def:704256
python-werkzeug is installed oval:org.secpod.oval:def:113687 python-werkzeug is installed oval:org.secpod.oval:def:70129 python-werkzeug: collection of utilities for WSGI applications Several security issues were fixed in Werkzeug. oval:org.secpod.oval:def:70292 python-werkzeug: collection of utilities for WSGI applications Several security issues were fixed in Werkzeug. oval:org.secpod.oval:def:19500053 Werkzeug is a comprehensive WSGI web application library. Browsers may allow "nameless" cookies that look like `=value` instead of `key=value`. A vulnerable browser may allow a compromised application on an adjacent subdomain to exploit this to set a cookie like `=__Host-test=bad` for another subdom ... oval:org.secpod.oval:def:19500056 Werkzeug is a comprehensive WSGI web application library. Prior to version 2.2.3, Werkzeug's multipart form data parser will parse an unlimited number of parts, including file parts. Parts can be a small amount of bytes, but each requires CPU time to parse and may use more memory as Python data. If ... oval:org.secpod.oval:def:89495 python-werkzeug: documentation for the werkzeug Python library Several security issues were fixed in Werkzeug. oval:org.secpod.oval:def:704189 python-werkzeug: collection of utilities for WSGI applications Werkzeug could be made to run arbitrary code if it opened a specially crafted file. oval:org.secpod.oval:def:113686 Werkzeug ======== Werkzeug started as simple collection of various utilities for WSGI applications and has become one of the most advanced WSGI utility modules. It includes a powerful debugger, full featured request and response objects, HTTP utilities to handle entity tags, cache control headers, H ... oval:org.secpod.oval:def:113708 Werkzeug ======== Werkzeug started as simple collection of various utilities for WSGI applications and has become one of the most advanced WSGI utility modules. It includes a powerful debugger, full featured request and response objects, HTTP utilities to handle entity tags, cache control headers, H ... oval:org.secpod.oval:def:52075 python-werkzeug: collection of utilities for WSGI applications Werkzeug could be made to run arbitrary code if it opened a specially crafted file. |