VYPR

rpm package

opensuse/python-bottle&distro=openSUSE Leap 15.2

pkg:rpm/opensuse/python-bottle&distro=openSUSE%20Leap%2015.2

Vulnerabilities (1)

  • CVE-2020-28473Jan 18, 2021
    affected < 0.12.13-lp152.4.3.1fixed 0.12.13-lp152.4.3.1

    The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the prox