Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/tryton@3.8.15
purl pkg:pypi/tryton@3.8.15
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-nkhg-m2cc-vbfm file_open in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with certain permissions to read arbitrary files via a "same root name but with a suffix" attack. NOTE: This vulnerability exists because of an incomplete fix for CVE-2016-1242. CVE-2017-0360
GHSA-7cwg-2575-3546
PYSEC-2017-97

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-30T20:52:43.829466+00:00 GitLab Importer Fixing VCID-nkhg-m2cc-vbfm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/tryton/CVE-2017-0360.yml 38.6.0