CVE-2013-4510: Tryton Directory Traversal vulnerability

May 17, 2022 (updated November 18, 2024)

Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a report.

References

bugs.tryton.org/issue3446
github.com/advisories/GHSA-qjmc-wwmw-cq9r
github.com/pypa/advisory-database/tree/main/vulns/tryton/PYSEC-2013-28.yaml
nvd.nist.gov/vuln/detail/CVE-2013-4510

Code Behaviors & Features

Detect and mitigate CVE-2013-4510 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →