Lucene search
GoogleOSV:PYSEC-2024-58HistoryJul 10, 2024 - 5:15 a.m.
PYSEC-2024-58
2024-07-1005:15:00
Google
osv.dev
24
django 5.0
directory traversal
save call
AI Score
6.7
Confidence
Low
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes of the django.core.files.storage.Storage base class, when they override generate_filename() without replicating the file-path validations from the parent class, potentially allow directory traversal via certain inputs during a save() call. (Built-in Storage sub-classes are unaffected.)
Related
veracode
veracode
Path Traversal
2024-07-11 06:51:35
debiancve
debiancve
CVE-2024-39330
2024-07-10 05:15:12
osv
osv
CVE-2024-39330
2024-07-09 14:00:00
Django Path Traversal vulnerability
2024-07-10 06:33:52
python-django vulnerabilities
2024-07-11 10:41:49
nvd
nvd
CVE-2024-39330
2024-07-10 05:15:12
vulnrichment
vulnrichment
CVE-2024-39330
2024-07-10 00:00:00
cve
cve
CVE-2024-39330
2024-07-10 05:15:12
ubuntucve
ubuntucve
CVE-2024-39330
2024-07-09 00:00:00
cvelist
cvelist
CVE-2024-39330
2024-07-10 00:00:00
github
github
Django Path Traversal vulnerability
2024-07-10 06:33:52
redhatcve
redhatcve
CVE-2024-39330
2024-07-16 14:37:15
wolfi
wolfi
CVE-2024-39330 vulnerabilities
2024-09-18 21:11:55
freebsd
freebsd
Django -- multiple vulnerabilities
2024-07-01 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6888-1)
2024-07-10 00:00:00
Ubuntu: Security Advisory (USN-6888-2)
2024-07-12 00:00:00
Django 4.x < 4.2.14, 5.x < 5.0.7 Multiple Vulnerabilities - Windows
2024-07-12 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2024-07-11 00:00:00
Django vulnerabilities
2024-07-09 00:00:00
nessus
nessus
Ubuntu 18.04 LTS : Django vulnerabilities (USN-6888-2)
2024-07-11 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: python-django-4.2.14-2.fc40
2024-07-19 01:46:40
[SECURITY] Fedora 39 Update: python-django4.2-4.2.14-1.fc39
2024-07-19 02:22:03
[SECURITY] Fedora 39 Update: python-django-4.2.14-2.fc39
2024-07-19 02:22:02
ibm
ibm
redhat
redhat