CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2016/03/02 12:0 a.m.•26 views

Ubuntu: Security Advisory (USN-2915-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS5.8AI score0.04035EPSS

OSV•added 2016/01/07 11:4 a.m.•9 views

SUSE-SU-2016:0044-1 Security update for python-Django

This update fixes the following security issues: - bnc955412, CVE-2015-8213 Possible settings leak in date template filter - bnc937522, CVE-2015-5143 Possible denial-of-service in session store - bnc937523, CVE-2015-5144 Possible Header injection - bnc941587, CVE-2015-5963 Possible...

7.8CVSS6.2AI score0.07266EPSS

Exploits0References9

OSV•added 2016/01/07 9:0 a.m.•3 views

SUSE-SU-2016:0040-1 Security update for python-Django

This update for python-Django fixes the following issues: - Prevent settings leak in date template filter. bsc955412, CVE-2015-8213...

5CVSS6.1AI score0.04284EPSS

OpenVAS•added 2015/12/31 12:0 a.m.•31 views

Fedora Update for python-django FEDORA-2015-323274

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.05163EPSS

OSV•added 2015/12/19 11:25 a.m.•6 views

SUSE-SU-2015:2327-1 Security update for python-Django

This update for python-Django fixes the following issues: - Add 0004-1.6.x-fixed-a-settings-leak-possibility-in-the-date-.patch to prevent settings leak in date template filter bsc955412, CVE-2015-8213...

5CVSS6AI score0.04284EPSS

Tenable Nessus•added 2015/12/17 12:0 a.m.•24 views

openSUSE Security Update : python-Django (openSUSE-2015-862)

The python-Django package was updated to fix the following security issue : - CVE-2015-8213: Fixed a problem to prevent settings leak in date template filter bnc955412. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

5CVSS7.1AI score0.04284EPSS

Tenable Nessus•added 2015/12/17 12:0 a.m.•26 views

openSUSE Security Update : python-django (openSUSE-2015-860)

The python-django package was updated to fix the following security issue : - CVE-2015-8213: Fixed a problem to prevent settings leak in date template filter bnc955412 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

5CVSS7.1AI score0.04284EPSS

OpenVAS•added 2015/12/08 12:0 a.m.•24 views

Mageia: Security Advisory (MGASA-2015-0463)

5CVSS6.5AI score0.04284EPSS

Exploits0References5

OSV•added 2015/12/04 11:31 p.m.•6 views

MGASA-2015-0463 Updated python-django packages fix security vulnerability

If an application allows users to specify an unvalidated format for dates and passes this format to the date filter, then a malicious user could obtain any secret in the application's settings by specifying a settings key instead of a date format CVE-2015-8213...

5CVSS5.9AI score0.04284EPSS

Exploits0References4

Mageia•added 2015/12/04 11:31 p.m.•40 views

Updated python-django packages fix security vulnerability

5CVSS6.2AI score0.04284EPSS

Tenable Nessus•added 2015/11/30 12:0 a.m.•28 views

Debian DSA-3404-1 : python-django - security update

Ryan Butterfield discovered a vulnerability in the date template filter in python-django, a high-level Python web development framework. A remote attacker can take advantage of this flaw to obtain any secret in the application's settings. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

5CVSS7.3AI score0.04284EPSS

Exploits0References4

Tenable Nessus•added 2015/11/30 12:0 a.m.•33 views

Debian DLA-349-1 : python-django security update

It was discovered that there was a potential settings leak in date template filter of Django, a web-development framework. If an application allows users to specify an unvalidated format for dates and passes this format to the date filter, e.g. lastupdated|date:userdateformat , then a malicious...

5CVSS7AI score0.04284EPSS

Debian•added 2015/11/25 9:40 p.m.•27 views

[SECURITY] [DLA 349-1] python-django security update

Package : python-django Version : 1.2.3-3+squeeze15 CVE ID : CVE-2015-8213 It was discovered that there was a potential settings leak in date template filter of Django, a web-development framework. If an application allows users to specify an unvalidated format for dates and passes this format to...

5CVSS6.1AI score0.04284EPSS

Debian•added 2015/11/25 5:32 p.m.•36 views

[SECURITY] [DSA 3404-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3404-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 25, 2015 https://www.debian.org/security/faq -...

5CVSS2.5AI score0.04284EPSS

Debian•added 2015/11/25 5:32 p.m.•33 views

[SECURITY] [DSA 3404-1] python-django security update

5CVSS5.5AI score0.04284EPSS

OpenVAS•added 2015/11/25 12:0 a.m.•21 views

Ubuntu: Security Advisory (USN-2816-1)

5CVSS6.6AI score0.04284EPSS

OpenVAS•added 2015/11/25 12:0 a.m.•26 views

Debian Security Advisory DSA 3404-1 (python-django - security update)

Ryan Butterfield discovered a vulnerability in the date template filter in python-django, a high-level Python web development framework. A remote attacker can take advantage of this flaw to obtain any secret in the application OpenVAS Vulnerability Test $Id: deb3404.nasl 6609 2017-07-07 12:05:59Z...

5CVSS0.1AI score0.04284EPSS

Exploits0References1

OSV•added 2015/11/25 12:0 a.m.•30 views

DSA-3404-1 python-django - security update

Bulletin has no description...

5CVSS6.1AI score0.04284EPSS