Beanbag · Review Board · CVE-2013-4409
**Name of the Vulnerable Software and Affected Versions**
Djblets versions prior to 0.7.21
Beanbag Review Board versions prior to 1.7.15
**Description**
The issue exists when parsing JSON requests, allowing an attacker to execute arbitrary Python code due to an eval() vulnerability.
**Recommendations**
For Djblets versions prior to 0.7.21, update to version 0.7.21 or later to resolve the issue.
For Beanbag Review Board versions prior to 1.7.15, update to version 1.7.15 or later to resolve the issue.