Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-25045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Django REST framework aka django-rest-framework before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping. CVE-2018-2504...

6.1CVSS6.1AI score0.00597EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2022/07/24 12:0 a.m.8 views

abaci-users (=0.1.0), burl (=1.0.0) +79 more potentially affected by CVE-2018-25045 via django-rest-framework (=0.1.0)

django-rest-framework PYPI version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on django-rest-framework and may be impacted: - abaci-users =0.1.0 - burl =1.0.0 - coopstarter-data =0.1.1, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.0.4, =0.5.0,...

6.1CVSS6.3AI score0.00597EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2022/07/23 2:15 a.m.28 views

CVE-2018-25045

Django REST framework aka django-rest-framework before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping...

6.1CVSS6.3AI score0.00597EPSS
Exploits0References5
OSV
OSV
added 2022/07/23 2:15 a.m.6 views

UBUNTU-CVE-2018-25045

Django REST framework aka django-rest-framework before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping...

6.1CVSS5.8AI score0.00597EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/07/23 1:43 a.m.30 views

CVE-2018-25045

Django REST framework aka django-rest-framework before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping...

6AI score0.00597EPSS
Exploits0References3
CVE
CVE
added 2022/07/23 1:43 a.m.2128 views

CVE-2018-25045

Django REST framework (django-rest-framework) before 3.9.1 is vulnerable to cross-site scripting (XSS) because the default Browsable API templates disable autoescaping. This causes unescaped content to be rendered in the Browsable API UI, enabling potential script injection when user-supplied dat...

6.1CVSS5.8AI score0.00597EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2022/07/23 1:43 a.m.36 views

CVE-2018-25045

Django REST framework aka django-rest-framework before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping...

6.1CVSS3.1AI score0.00597EPSS
Exploits0
Rows per page
Query Builder