Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2014 Greenbone AGOPENVAS:1361412562310868168
HistorySep 10, 2014 - 12:00 a.m.

Fedora Update for python-django FEDORA-2014-9791

2014-09-1000:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
10

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.868168");
  script_version("2023-06-23T16:09:17+0000");
  script_tag(name:"last_modification", value:"2023-06-23 16:09:17 +0000 (Fri, 23 Jun 2023)");
  script_tag(name:"creation_date", value:"2014-09-10 06:18:28 +0200 (Wed, 10 Sep 2014)");
  script_cve_id("CVE-2014-3473", "CVE-2014-3474", "CVE-2014-3475", "CVE-2014-1418", "CVE-2014-0473", "CVE-2014-0474", "CVE-2013-1443", "CVE-2013-4315", "CVE-2014-0480", "CVE-2014-0481", "CVE-2014-0482");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_name("Fedora Update for python-django FEDORA-2014-9791");
  script_tag(name:"affected", value:"python-django on Fedora 19");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name:"FEDORA", value:"2014-9791");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/137385.html");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'python-django'
  package(s) announced via the referenced advisory.");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2014 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC19");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC19")
{

  if ((res = isrpmvuln(pkg:"python-django", rpm:"python-django~1.5.9~1.fc19", rls:"FC19")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

fedora 20
nessus 39
openvas 46
redhat 4
veracode 4
ubuntu 5
securityvulns 4
debian 9
osv 14
mageia 4
gentoo 2
freebsd 4
ibm 3
ubuntucve 8
github 8
threatpost 1
debiancve 6
prion 5
cve 6
gitlab 4
seebug 3
fedora
fedora
[SECURITY] Fedora 19 Update: python-django-1.5.9-1.fc19
2014-09-09 22:18:44
[SECURITY] Fedora 19 Update: python-django14-1.4.16-1.fc19
2014-12-01 18:58:38
[SECURITY] Fedora 20 Update: python-django14-1.4.16-1.fc20
2014-12-01 18:59:44
nessus
nessus
Fedora 19 : python-django-1.5.9-1.fc19 (2014-9791)
2014-09-10 00:00:00
Oracle Solaris Third-Party Patch Update : horizon (multiple_cross_site_scripting_xss1)
2015-01-19 00:00:00
openSUSE Security Update : python-django (openSUSE-SU-2014:1132-1)
2014-09-17 00:00:00
openvas
openvas
Fedora Update for python-django14 FEDORA-2014-15307
2014-12-02 00:00:00
Fedora Update for python-django14 FEDORA-2014-15266
2014-12-02 00:00:00
Fedora Update for python-django14 FEDORA-2014-9788
2014-09-10 00:00:00
redhat
redhat
(RHSA-2014:0939) Moderate: python-django-horizon security, bug fix, and enhancement update
2014-07-24 00:00:00
(RHSA-2014:1188) Moderate: python-django-horizon security update
2014-09-15 00:00:00
(RHSA-2014:0456) Moderate: Django security update
2014-04-30 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-05-02 05:03:56
Cross-site Scripting (XSS)
2019-05-02 05:03:56
Cross-site Scripting (XSS)
2019-01-15 08:57:38
ubuntu
ubuntu
OpenStack Horizon vulnerabilities
2014-08-21 00:00:00
Django vulnerabilities
2014-09-16 00:00:00
Django vulnerabilities
2013-09-24 00:00:00
securityvulns
securityvulns
[USN-2323-1] OpenStack Horizon vulnerabilities
2014-08-24 00:00:00
[USN-1967-1] Django vulnerabilities
2013-10-02 00:00:00
[SECURITY] [DSA 3010-1] python-django security update
2014-08-26 00:00:00
debian
debian
[SECURITY] [DSA 3010-1] python-django security update
2014-08-22 20:52:59
[SECURITY] [DSA 3010-1] python-django security update
2014-08-22 20:52:59
[SECURITY] [DLA 65-1] python-django security update
2014-09-29 08:20:58
osv
osv
python-django - security update
2014-08-22 00:00:00
python-django - security update
2014-09-29 00:00:00
python-django - security update
2014-05-19 00:00:00
mageia
mageia
Updated python-django packages fix multiple vulnerabilities
2014-09-05 13:07:37
Updated python-django package fixes multiple vulnerabilities
2013-09-19 13:45:04
Updated python-django packages fix multiple vulnerabilities
2014-04-28 19:54:39
gentoo
gentoo
Django: Multiple vulnerabilities
2014-12-13 00:00:00
Django: Multiple vulnerabilities
2014-06-26 00:00:00
freebsd
freebsd
django -- multiple vulnerabilities
2014-08-20 00:00:00
django -- multiple vulnerabilities
2014-04-21 00:00:00
django -- multiple vulnerabilities
2013-09-10 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Django affect SmartCloud Provisioning (CVE-2014-0480, CVE-2014-0481, CVE-2014-0482, CVE-2014-0483)
2018-06-17 22:30:12
Security Bulletin: Vulnerabilities in Django affect IBM SmartCloud Provisioning shipped with IBM SmartCloud Orchestrator (CVE-2014-0480, CVE-2014-0481, CVE-2014-0482, CVE-2014-0483).
2018-06-17 22:30:50
Security Bulletin: SmartCloud Provisioning - Django vulnerabilities reported in April 2014 X-Force Report
2018-06-17 22:30:12
ubuntucve
ubuntucve
CVE-2014-3474
2014-07-09 00:00:00
CVE-2014-3475
2014-07-09 00:00:00
CVE-2014-3473
2014-07-09 00:00:00
github
github
Horizon-Orchestration Cross-site scripting (XSS) vulnerability through resource name
2022-05-13 01:11:29
Django Directory Traversal via ssi template tag
2022-05-17 04:56:46
Django Denial of Service Vulnerability in the authentication framework
2022-05-17 04:53:45
threatpost
threatpost
Patches for Django Framework Fix DoS Vuln
2013-09-17 13:40:25
debiancve
debiancve
CVE-2013-4315
2013-09-16 19:14:00
CVE-2013-1443
2013-09-23 20:55:00
CVE-2014-3474
2014-10-31 15:55:00
prion
prion
Cross site scripting
2014-10-31 15:55:00
Directory traversal
2013-09-16 19:14:00
Authentication flaw
2013-09-23 20:55:00
cve
cve
CVE-2014-3473
2014-10-31 15:55:00
CVE-2013-4315
2013-09-16 19:14:00
CVE-2013-1443
2013-09-23 20:55:00
gitlab
gitlab
Directory traversal with ssi template tag
2013-09-16 00:00:00
DOS via large passwords
2013-09-23 00:00:00
Caching of anonymous pages could reveal CSRF token
2014-04-23 00:00:00
seebug
seebug
Django "ssi"ๆจกๆฟๆ ‡็ญพ็›ฎๅฝ•้ๅŽ†ๆผๆดž(CVE-2013-4315)
2013-09-14 00:00:00
Djangoๅฏ†็ ๅ“ˆๅธŒๆ‹’็ปๆœๅŠกๆผๆดž(CVE-2013-1443)
2013-09-18 00:00:00
Django ็›ฎๅฝ•้ๅŽ†ๅบๅˆ—(CVE-2013-4315)
2013-09-14 00:00:00

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON
Related for OPENVAS:1361412562310868168
fedora20nessus39openvas46redhat4veracode4ubuntu5securityvulns4debian9osv14mageia4gentoo2freebsd4ibm3ubuntucve8github8threatpost1debiancve6prion5cve6gitlab4seebug3