exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

GHSA-crhm-qpjc-cm64

около 3 лет назад

Django CSRF Protection Bypass

CVSS3: 7.5

EPSS: Низкий

CVE-2016-7401

больше 8 лет назад

The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.

CVSS3: 7.5

EPSS: Низкий

CVE-2016-7401

больше 8 лет назад

The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.

CVSS3: 6.1

EPSS: Низкий

CVE-2016-7401

больше 8 лет назад

The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.

CVSS3: 7.5

EPSS: Низкий

CVE-2016-7401

больше 8 лет назад

The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.1 ...

CVSS3: 7.5

EPSS: Низкий

openSUSE-SU-2018:0826-1

около 7 лет назад

Security update for python-Django

EPSS: Низкий

openSUSE-SU-2018:0824-1

около 7 лет назад

Security update for python3-Django

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-crhm-qpjc-cm64 Django CSRF Protection Bypass	CVSS3: 7.5	3% Низкий	около 3 лет назад
CVE-2016-7401 The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.	CVSS3: 7.5	3% Низкий	больше 8 лет назад
CVE-2016-7401 The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.	CVSS3: 6.1	3% Низкий	больше 8 лет назад
CVE-2016-7401 The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies.	CVSS3: 7.5	3% Низкий	больше 8 лет назад
CVE-2016-7401 The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.1 ...	CVSS3: 7.5	3% Низкий	больше 8 лет назад
openSUSE-SU-2018:0826-1 Security update for python-Django			около 7 лет назад
openSUSE-SU-2018:0824-1 Security update for python3-Django			около 7 лет назад

Уязвимостей на страницу