Critical severity9.0NVD Advisory· Published Sep 1, 2020· Updated Jun 17, 2026
CVE-2020-15150
CVE-2020-15150
Description
There is a vulnerability in Paginator (Elixir/Hex package) which makes it susceptible to Remote Code Execution (RCE) attacks via input parameters to the paginate() function. This will potentially affect all current users of Paginator prior to version 1.0.0. The vulnerability has been patched in version 1.0.0 and all users should upgrade to this version immediately. Note that this patched version uses a dependency that requires an Elixir version >=1.5.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
paginatorHex | < 1.0.0 | 1.0.0 |
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/duffelhq/paginator/commit/bf45e92602e517c75aea0465efc35cd661d9ebf8nvdPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-w98m-2xqg-9cvjghsaADVISORY
- github.com/duffelhq/paginator/blob/ccf0f37fa96347cc8c8a7e9eb2c64462cec4b2dc/README.mdnvdThird Party AdvisoryWEB
- github.com/duffelhq/paginator/security/advisories/GHSA-w98m-2xqg-9cvjnvdThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2020-15150ghsaADVISORY
- hex.pm/packages/paginatornvdProductWEB
News mentions
0No linked articles in our index yet.