[issue25723] ConfigParser should never write broken configurations
SpaceOne
report at bugs.python.org
Wed Nov 25 13:14:42 EST 2015
SpaceOne added the comment:
Isn't is an actual problem in the field? We had a vulnerability in our code due to this as we only sanitized the config values and didn't recognized that add_section() does no validation of input.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue25723>
_______________________________________
More information about the Python-bugs-list
mailing list