CVE-2013-4315: Directory traversal with ssi template tag
(updated )
Directory traversal vulnerability allows remote attackers to read arbitrary files via a file path in the ALLOWED_INCLUDE_ROOTS setting followed by a ..
in a ssi template tag.
References
Detect and mitigate CVE-2013-4315 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →