CVE-2023-29159

Starlette has Path Traversal vulnerability in StaticFiles

Description

Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files in a web service which was built using Starlette.

Patch Available

Fix available through Seal Security.  
No upgrade required, protect your application instantly.

Fix without upgrading

Score

Severity

Ecosystem

Python

Publish Date

May 31, 2023

Modified Date

November 7, 2023

Score Vector

Affected Versions