CVE-2020-14942

Deserialization of Untrusted Data in pypi/tendenci

Identifiers

CVE-2020-14942

Package Slug

pypi/tendenci

Vulnerability

Deserialization of Untrusted Data

Description

Tendenci allows unrestricted deserialization in apps\helpdesk\views\staff.py.

Affected Versions

Version 12.0.10

Solution

Upgrade to version 12.0.11 or above.

Last Modified

2020-06-29

source