Количество 4
Количество 4
CVE-2010-4535
The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service (resource consumption) via a URL that specifies a large base36 integer.
CVE-2010-4535
The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service (resource consumption) via a URL that specifies a large base36 integer.
CVE-2010-4535
The password reset functionality in django.contrib.auth in Django befo ...
GHSA-7wph-fc4w-wqp2
Improper date handling in Django
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2010-4535 The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service (resource consumption) via a URL that specifies a large base36 integer. | CVSS2: 5 | 5% Низкий | почти 15 лет назад |
 | CVE-2010-4535 The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service (resource consumption) via a URL that specifies a large base36 integer. | CVSS2: 5 | 5% Низкий | почти 15 лет назад |
| CVE-2010-4535 The password reset functionality in django.contrib.auth in Django befo ... | CVSS2: 5 | 5% Низкий | почти 15 лет назад |
| GHSA-7wph-fc4w-wqp2 Improper date handling in Django | CVSS3: 7.5 | 5% Низкий | больше 7 лет назад |
Уязвимостей на страницу