CVE-2015-0846 Information

Description

django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTINGS settings which allows remote attackers to include and read arbitrary files via unspecified vectors.

Reference

http://www.debian.org/security/2015/dsa-3230 https://github.com/jamesturk/django-markupfield/blob/master/CHANGELOG