Moderate severity vulnerability was found in pip s3scanner (pip) .

S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket, as demonstrated by a ../ substring in a ListBucketResult element.

References


Courtesy:https://github.com/advisories/GHSA-qppg-v75c-r5ff

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *