4 Maggio 2021
Django 3.1.9 risolve un problema di sicurezza in 3.1.8.
MultiPartParser
, UploadedFile
, and FieldFile
allowed
directory-traversal via uploaded files with suitably crafted file names.
In order to mitigate this risk, stricter basename and path sanitation is now applied.
mar 08, 2023