Page 2 of 11 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2013-2161 – Swift: Unchecked user input in Swift XML responses
https://notcve.org/view.php?id=CVE-2013-2161
21 Jun 2013 — XML injection vulnerability in account/utils.py in OpenStack Swift Folsom, Grizzly, and Havana allows attackers to trigger invalid or spoofed Swift responses via an account name. Vulnerabilidad de inyección XML en accounts/utils.py en OpenStack Swift Folsom, Grizzly, y Havana, permite a atacantes provocar o suplantar respuestas Swift a través de un nombre de cuenta. Sebastian Krahmer discovered that Swift used the loads function in the pickle Python module when it was configured to use memcached. A remote a... • http://lists.opensuse.org/opensuse-updates/2013-07/msg00021.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •