Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.27 views

Fedora Update for Django FEDORA-2011-0096

Check for the Version of Django OpenVAS Vulnerability Test Fedora Update for Django FEDORA-2011-0096 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

5CVSS6.3AI score0.03348EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.26 views

Fedora Update for Django FEDORA-2011-0096

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.4AI score0.03348EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/01/11 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-1040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.03348EPSS
Exploits1References2
OSV
OSV
added 2011/01/10 8:0 p.m.2 views

DEBIAN-CVE-2010-4535

The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service resource consumption via a URL that...

5CVSS6.5AI score0.03348EPSS
Exploits0References1
CVE
CVE
added 2011/01/10 7:18 p.m.113 views

CVE-2010-4535

CVE-2010-4535 concerns the password reset in Django’s django.contrib.auth. The issue arises because the base36 timestamp string used in reset URLs is not validated for length, which allows remote attackers to cause resource consumption (DoS) by supplying a very large base36 integer. Affected are ...

5CVSS6.5AI score0.03348EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2011/01/10 7:18 p.m.29 views

CVE-2010-4535

The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service resource consumption via a URL that...

5CVSS6.2AI score0.03348EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/01/07 12:0 a.m.45 views

Ubuntu 9.10 / 10.04 LTS / 10.10 : python-django vulnerabilities (USN-1040-1)

Adam Baldwin discovered that Django did not properly validate query string lookups. This could be exploited to provide an information leak to an attacker with admin privilieges. CVE-2010-4534 Paul McMillan discovered that Django did not validate the length of the token used when generating a...

5CVSS5.5AI score0.03348EPSS
Exploits1References3
Rows per page
Query Builder