CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

CNNVD•added 2024/07/01 12:0 a.m.•5 views

Fiber Security Breach

Fiber is an open source web framework written in the Go language. A security vulnerability exists in Fiber versions prior to 2.52.5 that stems from a problem with the session middleware, which can lead to unauthorized access and session fixation attacks...

10CVSS6.7AI score0.00686EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 5:15 a.m.•3 views

SUSE CVE-2015-5963

contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service session store consumption or session record removal via a large number of requests to...

5CVSS7.6AI score0.05163EPSS

Exploits0References7

OSV•added 2022/05/17 12:36 a.m.•2 views

GHSA-PGXH-WFW4-JX2V Django denial of service via empty session record creation

8.7CVSS6.8AI score0.05163EPSS

Exploits0References21

BDU FSTEC•added 2015/09/15 12:0 a.m.•6 views

The vulnerability of the Django web application framework, which allows a hacker to trigger a denial-of-service attack

The vulnerability of the contrib.sessions.middleware.SessionMiddleware component in the Django web framework is related to a resource management error. Exploiting this vulnerability allows an attacker to cause service failures by sending a large number of requests to contrib.auth.views.logout,...

5CVSS6.4AI score0.05163EPSS

Exploits0References4Affected Software2

OSV•added 2015/08/24 2:59 p.m.•2 views

DEBIAN-CVE-2015-5963

5CVSS7.6AI score0.05163EPSS

Exploits0References1