Lucene search
K

28 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Python-Django

Django versions prior to 2.2.24, 3.x prior to 3.1.12, and 3.2.x prior to 3.2.4 have a potential issue with directory traversal through django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default...

4.9CVSS6.6AI score0.02737EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-0067

Malware in sbrugna...

4.9CVSS6.4AI score0.02737EPSS
Exploits0References23
OSV
OSV
added 2024/03/06 10:54 a.m.29 views

BIT-DJANGO-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6.2AI score0.02737EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.1 views

SUSE CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS7.8AI score0.02737EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.45 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (python-django20) (RHSA-2021:3490)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:3490 advisory. Security Fixes: Potential directory-traversal via archive.extract CVE-2021-3281 Potential directory traversal via admindocs CVE-2021-33203...

7.5CVSS6.7AI score0.07605EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2021/12/09 8:20 p.m.1 views

django: Potential directory traversal via ``admindocs``

A flaw was found in django. Staff members could use the :mod:django.contrib.admindocs TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been customized by the developers to also expose the file contents, then not...

4.9CVSS7.2AI score0.02737EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.4 views

The vulnerability of the TemplateDetailView function in the django/contrib/admindocs component of the Django web application’s software platform, related to vulnerabilities in pathname restrictions for directories, allows attackers to gain access to confidential data.

The vulnerability of the TemplateDetailView function in the django/contrib/admindocs component of the Django software development platform relates to shortcomings in pathname restrictions for directories. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

4.9CVSS6.5AI score0.02737EPSS
Exploits0References11Affected Software4
RedHat Linux
RedHat Linux
added 2021/09/15 1:41 p.m.4 views

django: Potential directory traversal via ``admindocs``

A flaw was found in django. Staff members could use the :mod:django.contrib.admindocs TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been customized by the developers to also expose the file contents, then not...

4.9CVSS7.2AI score0.02737EPSS
Exploits0References5
ALT Linux
ALT Linux
added 2021/07/13 12:0 a.m.30 views

Security fix for the ALT Linux 9 package python3-module-django version 2.2.24-alt1

July 13, 2021 Alexey Shabalin 2.2.24-alt1 - new version 2.2.24 - Fixes for the following security vulnerabilities: + CVE-2021-28658 Potential directory-traversal via uploaded files + CVE-2021-31542 Potential directory-traversal via uploaded files + CVE-2021-32052 Header injection possibility sinc...

5CVSS7AI score0.05291EPSS
Exploits0
OSV
OSV
added 2021/06/10 5:21 p.m.1 views

GHSA-68W8-QJQ3-2GFM Path Traversal in Django

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

6.9CVSS6.8AI score0.02737EPSS
Exploits0References12
Github Security Blog
Github Security Blog
added 2021/06/10 5:21 p.m.93 views

Path Traversal in Django

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS4.4AI score0.02737EPSS
Exploits0References11Affected Software1
NVD
NVD
added 2021/06/08 6:15 p.m.16 views

CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS0.02737EPSS
Exploits0References5
OSV
OSV
added 2021/06/08 6:15 p.m.31 views

CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6AI score
Exploits0References5
OSV
OSV
added 2021/06/08 6:15 p.m.2 views

DEBIAN-CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6.7AI score0.02737EPSS
Exploits0References1
Prion
Prion
added 2021/06/08 6:15 p.m.27 views

Directory traversal

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4CVSS5.8AI score0.02737EPSS
Exploits0References5Affected Software2
PyPA
PyPA
added 2021/06/08 6:15 p.m.5 views

PYSEC-2021-98

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS7AI score0.02737EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/06/08 6:15 p.m.2 views

PYSEC-2021-98

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6.8AI score0.02737EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/06/08 5:52 p.m.54 views

CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6.5AI score0.02737EPSS
Exploits0
Cvelist
Cvelist
added 2021/06/08 5:52 p.m.26 views

CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

6.6AI score0.02737EPSS
Exploits0References5
CNVD
CNVD
added 2021/06/08 12:0 a.m.34 views

Django path traversal vulnerability (CNVD-2022-31940)

Django is the Django Foundation's set of open source web application framework based on the Python language . The framework includes an object-oriented mapper, view system, template system, etc. Django has a path traversal vulnerability that stems from the fact that a user can use the:...

4.9CVSS2.8AI score0.02737EPSS
Exploits0References1
Rows per page
Query Builder