Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

GHSA-RXJP-MFM9-W4WR Path Traversal in Django

🗓️ 04 Jun 2021 21:15:56Reported by GoogleType 
osv
 osv🔗 osv.dev

Django path traversal flaw in 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1 via crafted file names.

Related
Refs
ReporterTitlePublishedViews
Family
FreeBSD		Django -- multiple vulnerabilities
22 Apr 202100:00
freebsd
ALT Linux		Security fix for the ALT Linux 10 package python3-module-django version 2.2.24-alt1
13 Jul 202100:00
altlinux
ALT Linux		Security fix for the ALT Linux 9 package python3-module-django version 2.2.24-alt1
13 Jul 202100:00
altlinux
AstraLinux		 Astra Linux - уязвимость в python-django
20 May 202605:53
astralinux
BDU FSTEC		The vulnerability of the MultiPartParser, UploadedFile, and FieldFile components of the Django web application framework lies in the lack of restrictions on file uploads. This allows attackers to gain access to confidential data.
27 Oct 202100:00
bdu_fstec
CNNVD		Django 代码问题漏洞
4 May 202100:00
cnnvd
CVE		CVE-2021-31542
5 May 202100:00
cve
Cvelist		CVE-2021-31542
5 May 202100:00
cvelist
Debian		[SECURITY] [DLA 2651-1] python-django security update
6 May 202109:26
debian
Debian		[SECURITY] [DLA 3744-1] python-django security update
29 Feb 202419:11
debian
Rows per page
SourceLink
nvdwww.nvd.nist.gov/vuln/detail/CVE-2021-31542
githubwww.github.com/django/django/commit/04ac1624bdc2fa737188401757cf95ced122d26d
githubwww.github.com/django/django/commit/25d84d64122c15050a0ee739e859f22ddab5ac48
githubwww.github.com/django/django/commit/c98f446c188596d4ba6de71d1b77b4a6c5c2a007
djangoprojectwww.djangoproject.com/weblog/2021/may/04/security-releases
securitywww.security.netapp.com/advisory/ntap-20210618-0001
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/ZVKYPHR3TKR2ESWXBPOJEKRO2OSJRZUE
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVKYPHR3TKR2ESWXBPOJEKRO2OSJRZUE
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
20 Sep 2024 15:33Current
7.1High risk
Vulners AI Score7.1
CVSS 3.17.5
CVSS 48.7
EPSS0.04357
DjangoPath traversalVersion two point twoVersion three point oneVersion three point twoUploaded file names
0