wordops@3.20.0 vulnerabilities

An essential toolset that eases server administration

latest version

3.20.0
first published

5 years ago
latest version published

24 days ago
licenses detected
- MIT
  [0,)
View wordops package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the wordops package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Time-of-check Time-of-use (TOCTOU) Race Condition wordops is an An essential toolset that eases server administration Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition in `stack_pref.py`, which sets the the `conf_path` variable using `os.open function`, and does not restrict the permissions on the resulting file. An attacker can exploit this to inject a malicious file which is subsequently executed. How to fix Time-of-check Time-of-use (TOCTOU) Race Condition? There is no fixed version for `wordops`.	[0,)

Time-of-check Time-of-use (TOCTOU) Race Condition

wordops is an An essential toolset that eases server administration

Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition in stack_pref.py, which sets the the conf_path variable using os.open function, and does not restrict the permissions on the resulting file. An attacker can exploit this to inject a malicious file which is subsequently executed.

How to fix Time-of-check Time-of-use (TOCTOU) Race Condition?

There is no fixed version for wordops.

[0,)

Go back to all versions of this package

wordops@3.20.0 vulnerabilities

An essential toolset that eases server administration

latest version

first published

latest version published

licenses detected

Direct Vulnerabilities