exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 8

BDU:2024-10874

около 1 года назад

Уязвимость класса django.db.models.fields.json.HasKey программной платформы для веб-приложений Django, позволяющая нарушителю выполнить произвольный SQL-код

CVSS3: 9.1

EPSS: Низкий

ROS-20250127-01

около 1 года назад

Множественные уязвимости python3-django

CVSS3: 9.1

EPSS: Низкий

CVE-2024-53908

около 1 года назад

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)

CVSS3: 9.8

EPSS: Низкий

CVE-2024-53908

около 1 года назад

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)

CVSS3: 9.1

EPSS: Низкий

CVE-2024-53908

около 1 года назад

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)

CVSS3: 9.8

EPSS: Низкий

CVE-2024-53908

около 1 года назад

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, ...

CVSS3: 9.8

EPSS: Низкий

GHSA-m9g8-fxxm-xg86

около 1 года назад

Django SQL injection in HasKey(lhs, rhs) on Oracle

CVSS3: 9.8

EPSS: Низкий

SUSE-SU-2024:4285-1

около 1 года назад

Security update for python-Django

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2024-10874 Уязвимость класса django.db.models.fields.json.HasKey программной платформы для веб-приложений Django, позволяющая нарушителю выполнить произвольный SQL-код	CVSS3: 9.1	1% Низкий	около 1 года назад
ROS-20250127-01 Множественные уязвимости python3-django	CVSS3: 9.1		около 1 года назад
CVE-2024-53908 An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)	CVSS3: 9.8	1% Низкий	около 1 года назад
CVE-2024-53908 An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)	CVSS3: 9.1	1% Низкий	около 1 года назад
CVE-2024-53908 An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.)	CVSS3: 9.8	1% Низкий	около 1 года назад
CVE-2024-53908 An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, ...	CVSS3: 9.8	1% Низкий	около 1 года назад
GHSA-m9g8-fxxm-xg86 Django SQL injection in HasKey(lhs, rhs) on Oracle	CVSS3: 9.8	1% Низкий	около 1 года назад
SUSE-SU-2024:4285-1 Security update for python-Django			около 1 года назад

Уязвимостей на страницу