exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-25626

больше 5 лет назад

A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-25626

больше 5 лет назад

A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.

CVSS3: 5.4

EPSS: Низкий

CVE-2020-25626

больше 5 лет назад

A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-25626

больше 5 лет назад

A flaw was found in Django REST Framework versions before 3.12.0 and b ...

CVSS3: 6.1

EPSS: Низкий

openSUSE-SU-2021:0322-1

почти 5 лет назад

Security update for python-djangorestframework

EPSS: Низкий

GHSA-fx83-3ph3-9j2q

почти 5 лет назад

Cross-site Scripting (XSS) in Django REST Framework

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-25626 A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.	CVSS3: 6.1	1% Низкий	больше 5 лет назад
CVE-2020-25626 A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.	CVSS3: 5.4	1% Низкий	больше 5 лет назад
CVE-2020-25626 A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When using the browseable API viewer, Django REST Framework fails to properly escape certain strings that can come from user input. This allows a user who can control those strings to inject malicious <script> tags, leading to a cross-site-scripting (XSS) vulnerability.	CVSS3: 6.1	1% Низкий	больше 5 лет назад
CVE-2020-25626 A flaw was found in Django REST Framework versions before 3.12.0 and b ...	CVSS3: 6.1	1% Низкий	больше 5 лет назад
openSUSE-SU-2021:0322-1 Security update for python-djangorestframework		1% Низкий	почти 5 лет назад
GHSA-fx83-3ph3-9j2q Cross-site Scripting (XSS) in Django REST Framework	CVSS3: 6.1	1% Низкий	почти 5 лет назад

Уязвимостей на страницу