exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 673

GHSA-r3xc-prgr-mg9p

около 2 лет назад

Django bypasses validation when using one form field to upload multiple files

CVSS3: 9.8

EPSS: Низкий

GHSA-qrw5-5h28-6cmg

больше 2 лет назад

Django denial-of-service vulnerability in internationalized URLs

CVSS3: 7.5

EPSS: Низкий

GHSA-qmf9-6jqf-j8fq

больше 1 года назад

Django potential denial of service vulnerability in UsernameField on Windows

CVSS3: 7.5

EPSS: Низкий

GHSA-qg2p-9jwr-mmqf

11 месяцев назад

Django vulnerable to Denial of Service

CVSS3: 7.5

EPSS: Низкий

GHSA-qc99-g3wm-hgxr

около 3 лет назад

Django Arbitrary Code Execution

EPSS: Низкий

GHSA-q7q2-qf2q-rw3w

около 3 лет назад

Django Vulnerable to Cache Poisoning

CVSS3: 7.4

EPSS: Низкий

GHSA-q5qw-4364-5hhm

около 3 лет назад

Django Vulnerable to HTTP Response Splitting Attack

CVSS3: 7.5

EPSS: Низкий

GHSA-q2jf-h9jm-m7p4

больше 2 лет назад

Django contains Uncontrolled Resource Consumption via cached header

CVSS3: 7.5

EPSS: Низкий

GHSA-pw27-w7w4-9qc7

около 3 лет назад

Django XSS Vulnerability

CVSS3: 7.4

EPSS: Низкий

GHSA-pv4p-cwwg-4rph

11 месяцев назад

Django SQL injection vulnerability

CVSS3: 9.1

EPSS: Низкий

GHSA-pjc8-j97x-hp3p

около 3 лет назад

** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.96 allows remote attackers to change passwords of arbitrary users via a request to admin/auth/user/1/password/. NOTE: this issue has been disputed by Debian, since product documentation includes a recommendation for a CSRF protection module that is included with the product. However, CVE considers this an issue because the default configuration does not use this module.

EPSS: Низкий

GHSA-pgxh-wfw4-jx2v

около 3 лет назад

Django denial of service via empty session record creation

CVSS3: 7.5

EPSS: Низкий

GHSA-p99v-5w3c-jqq9

около 4 лет назад

Django Access Control Bypass possibly leading to SSRF, RFI, and LFI attacks

CVSS3: 7.5

EPSS: Низкий

GHSA-p6m5-h7pp-v2x5

около 3 лет назад

Django Regex Algorithmic Complexity Causes Denial of Service

CVSS3: 7.5

EPSS: Низкий

GHSA-p64x-8rxx-wf6q

почти 3 года назад

Django `Trunc()` and `Extract()` database functions vulnerable to SQL Injection

CVSS3: 9.8

EPSS: Критический

GHSA-mwv2-398h-v489

около 3 лет назад

Django Improper Access Control

EPSS: Низкий

GHSA-mv8g-fhh6-6267

около 3 лет назад

Django user with hardcoded password created when running tests on Oracle

CVSS3: 9.8

EPSS: Низкий

GHSA-m9g8-fxxm-xg86

6 месяцев назад

Django SQL injection in HasKey(lhs, rhs) on Oracle

CVSS3: 9.8

EPSS: Низкий

GHSA-jrh2-hc4r-7jwx

больше 3 лет назад

Directory-traversal in Django

CVSS3: 5.3

EPSS: Низкий

GHSA-jhjg-w2cp-5j44

около 3 лет назад

Django DoS in django.views.static.serve

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-r3xc-prgr-mg9p Django bypasses validation when using one form field to upload multiple files	CVSS3: 9.8	0% Низкий	около 2 лет назад
GHSA-qrw5-5h28-6cmg Django denial-of-service vulnerability in internationalized URLs	CVSS3: 7.5	6% Низкий	больше 2 лет назад
GHSA-qmf9-6jqf-j8fq Django potential denial of service vulnerability in UsernameField on Windows	CVSS3: 7.5	4% Низкий	больше 1 года назад
GHSA-qg2p-9jwr-mmqf Django vulnerable to Denial of Service	CVSS3: 7.5	0% Низкий	11 месяцев назад
GHSA-qc99-g3wm-hgxr Django Arbitrary Code Execution		1% Низкий	около 3 лет назад
GHSA-q7q2-qf2q-rw3w Django Vulnerable to Cache Poisoning	CVSS3: 7.4	1% Низкий	около 3 лет назад
GHSA-q5qw-4364-5hhm Django Vulnerable to HTTP Response Splitting Attack	CVSS3: 7.5	1% Низкий	около 3 лет назад
GHSA-q2jf-h9jm-m7p4 Django contains Uncontrolled Resource Consumption via cached header	CVSS3: 7.5	2% Низкий	больше 2 лет назад
GHSA-pw27-w7w4-9qc7 Django XSS Vulnerability	CVSS3: 7.4	1% Низкий	около 3 лет назад
GHSA-pv4p-cwwg-4rph Django SQL injection vulnerability	CVSS3: 9.1	0% Низкий	11 месяцев назад
GHSA-pjc8-j97x-hp3p DISPUTED Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.96 allows remote attackers to change passwords of arbitrary users via a request to admin/auth/user/1/password/. NOTE: this issue has been disputed by Debian, since product documentation includes a recommendation for a CSRF protection module that is included with the product. However, CVE considers this an issue because the default configuration does not use this module.		0% Низкий	около 3 лет назад
GHSA-pgxh-wfw4-jx2v Django denial of service via empty session record creation	CVSS3: 7.5	6% Низкий	около 3 лет назад
GHSA-p99v-5w3c-jqq9 Django Access Control Bypass possibly leading to SSRF, RFI, and LFI attacks	CVSS3: 7.5	0% Низкий	около 4 лет назад
GHSA-p6m5-h7pp-v2x5 Django Regex Algorithmic Complexity Causes Denial of Service	CVSS3: 7.5	1% Низкий	около 3 лет назад
GHSA-p64x-8rxx-wf6q Django `Trunc()` and `Extract()` database functions vulnerable to SQL Injection	CVSS3: 9.8	93% Критический	почти 3 года назад
GHSA-mwv2-398h-v489 Django Improper Access Control		1% Низкий	около 3 лет назад
GHSA-mv8g-fhh6-6267 Django user with hardcoded password created when running tests on Oracle	CVSS3: 9.8	1% Низкий	около 3 лет назад
GHSA-m9g8-fxxm-xg86 Django SQL injection in HasKey(lhs, rhs) on Oracle	CVSS3: 9.8	0% Низкий	6 месяцев назад
GHSA-jrh2-hc4r-7jwx Directory-traversal in Django	CVSS3: 5.3	0% Низкий	больше 3 лет назад
GHSA-jhjg-w2cp-5j44 Django DoS in django.views.static.serve	CVSS3: 7.5	9% Низкий	около 3 лет назад

Уязвимостей на страницу