Python : Security Vulnerabilities, CVEs, Published In 2011 (Information Leak)
The is_cgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / (slash) character at the beginning of the URI.
Max CVSS
5.0
EPSS Score
0.85%
Published
2011-05-09
Updated
2019-10-25
1 vulnerabilities found