Lucene search
K

25 matches found

hackapp
hackapp
added 2016/04/01 9:0 a.m.9 views

Furniture Mod - Base64 encoded String, Exported ContentProvider, Hardcoded secrets vulnerabilities

HackApp vulnerability scanner discovered that application Furniture Mod published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
NVD
NVD
added 2015/12/07 8:59 p.m.17 views

CVE-2015-8213

The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...

5CVSS6.1AI score0.04284EPSS
Exploits0References14
Cvelist
Cvelist
added 2015/12/07 8:0 p.m.25 views

CVE-2015-8213

The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...

6AI score0.04284EPSS
Exploits0References14
CVE
CVE
added 2015/12/07 8:0 p.m.113 views

CVE-2015-8213

CVE-2015-8213 affects Django: get_format in utils/formats.py could expose sensitive settings (e.g., SECRET_KEY) when a format is taken from a settings key instead of a date/time format. Affected versions: Django 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2. Impact is informati...

5CVSS6.1AI score0.04284EPSS
Exploits0References14Affected Software1
UbuntuCve
UbuntuCve
added 2015/11/24 5:0 p.m.24 views

CVE-2015-8213

The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...

5CVSS7.1AI score0.04284EPSS
Exploits0References3
Rows per page
Query Builder