Arbitrary local file read vulnerability during template rendering
High severity
GitHub Reviewed
Published
Mar 15, 2023
to the GitHub Advisory Database
•
Updated Mar 20, 2023
Description
Published by the National Vulnerability Database
Mar 15, 2023
Published to the GitHub Advisory Database
Mar 15, 2023
Reviewed
Mar 16, 2023
Last updated
Mar 20, 2023
Directory traversal vulnerability in swig-templates thru 2.0.4 and swig thru 1.4.2, allows attackers to read arbitrary files via the include or extends tags.
References