exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2011-4140

больше 13 лет назад

The CSRF protection mechanism in Django through 1.2.7 and 1.3.x through 1.3.1 does not properly handle web-server configurations supporting arbitrary HTTP Host headers, which allows remote attackers to trigger unauthenticated forged requests via vectors involving a DNS CNAME record and a web page containing JavaScript code.

CVSS2: 6.8

EPSS: Низкий

CVE-2011-4140

больше 13 лет назад

The CSRF protection mechanism in Django through 1.2.7 and 1.3.x throug ...

CVSS2: 6.8

EPSS: Низкий

GHSA-h95j-h2rv-qrg4

почти 7 лет назад

Django Cross-Site Request Forgery vulnerability

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2011-4140 The CSRF protection mechanism in Django through 1.2.7 and 1.3.x through 1.3.1 does not properly handle web-server configurations supporting arbitrary HTTP Host headers, which allows remote attackers to trigger unauthenticated forged requests via vectors involving a DNS CNAME record and a web page containing JavaScript code.	CVSS2: 6.8	0% Низкий	больше 13 лет назад
CVE-2011-4140 The CSRF protection mechanism in Django through 1.2.7 and 1.3.x throug ...	CVSS2: 6.8	0% Низкий	больше 13 лет назад
GHSA-h95j-h2rv-qrg4 Django Cross-Site Request Forgery vulnerability	CVSS3: 7.5	0% Низкий	почти 7 лет назад

Уязвимостей на страницу