Impact
This vulnerability could have allowed an attacker to put arbitrary content in the response by having a user follow a crafted URL, giving the attacker access to the user's current session. This was due to one of our middlewares reflecting user input back in the response.
Users of https://readthedocs.org/ and https://readthedocs.com/ do not need to take any further action, we have taken measures to ensure that the security issue is now fully fixed.
This issue was discovered and responsible disclosed to us by Surya Dev Singh. We have seen no signs that this vulnerability was exploited in the wild.
Custom installations
We don't officially support custom installations of Read the Docs, but If you are using a custom installation, we recommend you to upgrade.
Patches
This vulnerability has been patched in our 10.12.0 release.
References
For more information
If you have any questions or comments about this advisory, email us at security@readthedocs.org (PGP)
surya-dev-singh Reporter
Impact
This vulnerability could have allowed an attacker to put arbitrary content in the response by having a user follow a crafted URL, giving the attacker access to the user's current session. This was due to one of our middlewares reflecting user input back in the response.
Users of https://readthedocs.org/ and https://readthedocs.com/ do not need to take any further action, we have taken measures to ensure that the security issue is now fully fixed.
This issue was discovered and responsible disclosed to us by Surya Dev Singh. We have seen no signs that this vulnerability was exploited in the wild.
Custom installations
We don't officially support custom installations of Read the Docs, but If you are using a custom installation, we recommend you to upgrade.
Patches
This vulnerability has been patched in our 10.12.0 release.
References
For more information
If you have any questions or comments about this advisory, email us at security@readthedocs.org (PGP)