exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

GHSA-pw27-w7w4-9qc7

около 3 лет назад

Django XSS Vulnerability

CVSS3: 7.4

EPSS: Низкий

CVE-2016-2512

около 9 лет назад

The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.

CVSS3: 7.4

EPSS: Низкий

CVE-2016-2512

больше 9 лет назад

The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.

CVSS2: 5.8

EPSS: Низкий

CVE-2016-2512

около 9 лет назад

The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.

CVSS3: 7.4

EPSS: Низкий

CVE-2016-2512

около 9 лет назад

The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x ...

CVSS3: 7.4

EPSS: Низкий

openSUSE-SU-2018:0826-1

около 7 лет назад

Security update for python-Django

EPSS: Низкий

openSUSE-SU-2018:0824-1

около 7 лет назад

Security update for python3-Django

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-pw27-w7w4-9qc7 Django XSS Vulnerability	CVSS3: 7.4	1% Низкий	около 3 лет назад
CVE-2016-2512 The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.	CVSS3: 7.4	1% Низкий	около 9 лет назад
CVE-2016-2512 The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.	CVSS2: 5.8	1% Низкий	больше 9 лет назад
CVE-2016-2512 The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.	CVSS3: 7.4	1% Низкий	около 9 лет назад
CVE-2016-2512 The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x ...	CVSS3: 7.4	1% Низкий	около 9 лет назад
openSUSE-SU-2018:0826-1 Security update for python-Django			около 7 лет назад
openSUSE-SU-2018:0824-1 Security update for python3-Django			около 7 лет назад

Уязвимостей на страницу