7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2008-0252

GHSA ID

GHSA-76x8-gg39-5jjg

EPSS Score

0.85249%

CWE

CWE-22

Published

5/1/2022

Updated

9/13/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2008-0252

CVE-2008-0252:
CherryPy Malicious cookies allow access to files outside the session directory

Directory traversal vulnerability in the _get_file_path function in (1) lib/sessions.py in CherryPy 3.0.x up to 3.0.2, (2) filter/sessionfilter.py in CherryPy 2.1, and (3) filter/sessionfilter.py in CherryPy 2.x allows remote attackers to create or delete arbitrary files, and possibly read and write portions of arbitrary files, via a crafted session id in a cookie.

(GitHub Advisory)

7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2008-0252

GHSA ID

GHSA-76x8-gg39-5jjg

EPSS Score

0.85249%

CWE

CWE-22

Published

5/1/2022

Updated

9/13/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
cherrypy	pip	>= 0, < 2.1.1	2.1.1
cherrypy	pip	>= 3.0, < 3.0.2	3.0.2

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from the _get_file_path function in both 3.0.x (lib/sessions.py) and 2.x (filter/sessionfilter.py) implementations. The GitHub patch shows the 3.0.x version added a critical os.path.normpath check to prevent directory traversal, confirming the original function lacked this validation. CVE/GHSA descriptions explicitly name these files/functions, and the vulnerability type (CWE-22) directly maps to insecure path construction using untrusted input (session IDs). The 2.x equivalent in sessionfilter.py is inferred to have the same flaw based on vulnerability descriptions covering both major versions.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*ir**tory tr*v*rs*l vuln*r**ility in t** _**t_*il*_p*t* *un*tion in (*) `li*/s*ssions.py` in ***rryPy *.*.x up to *.*.*, (*) `*ilt*r/s*ssion*ilt*r.py` in ***rryPy *.*, *n* (*) `*ilt*r/s*ssion*ilt*r.py` in ***rryPy *.x *llows r*mot* *tt**k*rs to *r**t

Reasoning

T** vuln*r**ility st*ms *rom t** _**t_*il*_p*t* *un*tion in *ot* *.*.x (li*/s*ssions.py) *n* *.x (*ilt*r/s*ssion*ilt*r.py) impl*m*nt*tions. T** *it*u* p*t** s*ows t** *.*.x v*rsion ***** * *riti**l os.p*t*.normp*t* ****k to pr*v*nt *ir**tory tr*v*rs*

7.5

Basic Information

Concerned about an active attack path?

CVE-2008-0252: CherryPy Malicious cookies allow access to files outside the session directory

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2008-0252:
CherryPy Malicious cookies allow access to files outside the session directory

Vulnerability Intelligence
Miggo AI