Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:56 p.m.7 views

CVE-2021-46898

views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...

6.1CVSS6.6AI score0.0047EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.17 views

openSUSE: Security Advisory for python (openSUSE-SU-2023:0384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.0047EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.18 views

openSUSE Security Advisory (openSUSE-SU-2024:0017-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.0047EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.25 views

openSUSE 15 Security Update : python-django-grappelli (openSUSE-SU-2024:0017-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0017-1 advisory. - views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith/ but this does not...

6.1CVSS6.2AI score0.0047EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/12/01 12:0 a.m.20 views

openSUSE 15 Security Update : python-django-grappelli (openSUSE-SU-2023:0384-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0384-1 advisory. - views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith/ but this does not...

6.1CVSS6.2AI score0.0047EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2023/11/30 12:0 a.m.10 views

Security update for python-django-grappelli (moderate)

openSUSE Security Update: Security update for python-django-grappelli Announcement ID: openSUSE-SU-2023:0384-1 Rating: moderate References: 1216481 Cross-References: CVE-2021-46898 CVSS scores: CVE-2021-46898 NVD : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: openSUSE...

6.1CVSS7.2AI score0.0047EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/10/24 1:3 a.m.3 views

SUSE CVE-2021-46898

views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...

6.1CVSS6.9AI score0.0047EPSS
Exploits1References5
Circl
Circl
added 2023/10/22 10:43 p.m.6 views

CVE-2021-46898

creationtimestamp| type| source ---|---|--- 2023-10-22 22:43:45+00:00| seen| https://t.me/cibsecurity/72743...

6.1CVSS6AI score0.0047EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2023/10/22 9:36 p.m.4 views

django-filebrowser (=3.13.2), geonode (=3.3.3) +2 more potentially affected by CVE-2021-46898 via django-grappelli (>=2.10.1 <=2.15.1)

django-grappelli PYPI version =2.10.1, =6.5.0, =1.12.1, =1.13.0.dev10 Source cves: CVE-2021-46898 Source advisory: OSV:GHSA-9X43-5QCQ-H79Q...

6.1CVSS6.3AI score0.0047EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/10/22 7:15 p.m.12 views

CVE-2021-46898

views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...

6.1CVSS6.3AI score0.0047EPSS
Exploits1References5
OSV
OSV
added 2023/10/22 7:15 p.m.21 views

CVE-2021-46898

views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...

6.1CVSS7AI score
Exploits0References4
vulnersOsv
vulnersOsv
added 2023/10/22 7:15 p.m.3 views

django-filebrowser (=3.13.2), geonode (=3.3.3) +2 more potentially affected by CVE-2021-46898 via django-grappelli (>=2.10.1 <=2.15.1)

django-grappelli PYPI version =2.10.1, =6.5.0, =1.12.1, =1.13.0.dev10 Source cves: CVE-2021-46898 Source advisory: OSV:PYSEC-2023-211...

6.1CVSS6.3AI score0.0047EPSS
Exploits1
Cvelist
Cvelist
added 2023/10/22 12:0 a.m.31 views

CVE-2021-46898

views/switch.py in django-grappelli aka Django Grappelli before 2.15.2 attempts to prevent external redirection with startswith"/" but this does not consider a protocol-relative URL e.g., //example.com attack...

6.3AI score0.0047EPSS
Exploits1References4
CVE
CVE
added 2023/10/22 12:0 a.m.91 views

CVE-2021-46898

CVE-2021-46898 – django-grappelli protocol-relative URL redirect issue Affected component: views/switch.py in django-grappelli (also known as Django Grappelli) prior to version 2.15.2. The vulnerability arises from an approach that attempts to block external redirects using a startswith("/") chec...

6.1CVSS6AI score0.0047EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder