CVE-2020-7698
Injection Vulnerability in pypi/gerapy
Identifiers
CVE-2020-7698
Package Slug
pypi/gerapy
Vulnerability
Injection Vulnerability
Description
The Gerapy suffers from an OS command injection vulnerability. Unsanitized input is passed to Popen, via the project_configure endpoint.
Affected Versions
All versions starting from 0.0.0 before 0.9.3
Solution
Upgrade to version 0.9.3 or above.
Last Modified
2020-08-03
| source |