Lucene search
K

5 matches found

OSV
OSV
added 2019/08/02 3:15 p.m.25 views

CVE-2019-14233

An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. Due to the behaviour of the underlying HTMLParser, django.utils.html.striptags would be extremely slow to evaluate certain inputs containing large sequences of nested incomplete HTML entities...

7.5CVSS7.4AI score
Exploits0References10
OSV
OSV
added 2019/01/09 11:29 p.m.21 views

CVE-2019-3498

In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.pagenotfound, leading to content spoofing in a 404 error page if a user fails to recognize th...

6.5CVSS6.2AI score
Exploits0References8
AlpineLinux
AlpineLinux
added 2019/01/09 10:0 p.m.42 views

CVE-2019-3498

In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.pagenotfound, leading to content spoofing in a 404 error page if a user fails to recognize th...

6.5CVSS6.5AI score0.03685EPSS
Exploits0
Cvelist
Cvelist
added 2018/08/03 5:0 p.m.34 views

CVE-2018-14574

django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect...

6.3AI score0.2549EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2018/08/01 12:0 a.m.5 views

PT-2018-2304 · Django Software Foundation +2 · Django +2

Name of the Vulnerable Software and Affected Versions: Django versions 1.11.x through 1.11.14 Django versions 2.0.x through 2.0.7 Description: The issue is related to an Open Redirect in the django.middleware.common.CommonMiddleware module of the Django framework. This occurs due to incorrect...

7.8CVSS6AI score0.62575EPSS
Exploits2References59
Rows per page
Query Builder