Description
In Pallets Werkzeug before 0.15.5, SharedDataMiddleware mishandles drive names (such as C:) in Windows pathnames.
Remediation
References
Related Vulnerabilities
WordPress Plugin Data Tables Generator by Supsystic Cross-Site Scripting (1.10.19)
WordPress Plugin ThirstyAffiliates Affiliate Link Manager Cross-Site Scripting (3.9.2)
WordPress Plugin Dynamic Widgets Multiple Unspecified Vulnerabilities (1.5.7)
Werkzeug WSGI Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-25577)
WordPress Plugin EventCommerce WP Event Calendar Cross-Site Scripting (1.0)