5.9
CVSSv3

CVE-2013-5123

Published: 05/11/2019 Updated: 21/11/2024

Vulnerability Summary

The mirroring support (-M, --use-mirrors) in Python Pip prior to 1.5 uses insecure DNS querying and authenticity checks which allows malicious users to perform man-in-the-middle attacks.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

pypa pip

virtualenv virtualenv 12.0.7

fedoraproject fedora 20

fedoraproject fedora 21

redhat openshift 1.0

redhat openshift 2.0

redhat software collections -

debian debian linux 8.0

debian debian linux 9.0

debian debian linux 10.0

Exploits

phlyLabs phlyMail Lite 40304 (go param) Open Redirect Vulnerability Vendor: phlyLabs Product web page: wwwphlymailcom Affected version: Lite 40304 Summary: phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs from anyhwere, where you have internet access T ...