PYSEC-2026-1054

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/trytond/PYSEC-2026-1054.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2026-1054
Aliases
Published
2026-07-06T08:03:26.822122Z
Modified
2026-07-07T11:56:37.362518605Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
  • 8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Summary
Tryton Directory Traversal vulnerability
Details

Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a report.

References

Affected packages

PyPI / trytond

Package

Affected ranges

Affected versions

3.*
3.0.0

Database specific

source
"https://github.com/pypa/advisory-database/blob/main/vulns/trytond/PYSEC-2026-1054.yaml"