Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-12781

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 1.11 before 1.11.22, 2.1 before 2.1.10, and 2.2 before 2.2.3. An HTTP request is not redirected to HTTPS when the...

5.3CVSS6.8AI score0.01697EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/29 12:0 a.m.39 views

RHEL 7 : python-django (RHSA-2020:4390)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4390 advisory. Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as muc...

9.8CVSS7.1AI score0.47694EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2020/10/28 6:24 p.m.51 views

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.8AI score0.47694EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2020/06/23 12:0 a.m.33 views

Fedora: Security Advisory for python-django (FEDORA-2020-2e7d30f7aa)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.3AI score0.65336EPSS
Exploits15References2
RedHat Linux
RedHat Linux
added 2020/04/06 9:2 a.m.78 views

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat OpenStack Platform 15 Stein. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.8AI score0.47694EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.37 views

openSUSE: Security Advisory for python-Django (openSUSE-SU-2019:1839-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.2AI score0.87218EPSS
Exploits4References2
Openbugbounty
Openbugbounty
added 2019/12/17 12:29 p.m.8 views

scuolareginamargherita.edu.it Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1040974 Security Researcher MrRain1996 Helped patch 1003 vulnerabilities Received 5 Coordinated Disclosure badges Received 9 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting...

0.1AI score
Exploits0
OSV
OSV
added 2019/09/16 8:44 a.m.9 views

SUSE-SU-2019:2379-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issue fixed: - CVE-2019-12781: Add incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945...

5.3CVSS6.3AI score0.01697EPSS
Exploits0References3
ALT Linux
ALT Linux
added 2019/07/15 12:0 a.m.74 views

Security fix for the ALT Linux 10 package python3-module-django version 2.2.3-alt1

July 15, 2019 Alexey Shabalin 2.2.3-alt1 - 2.2.3 - build python3 only - rename package to python3-module-django2.2 - Fixes for the following security vulnerabilities: + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS + CVE-2019-12308 AdminURLFieldWidget XSS +...

5.8CVSS6.6AI score0.2549EPSS
Exploits0
ALT Linux
ALT Linux
added 2019/07/15 12:0 a.m.78 views

Security fix for the ALT Linux 9 package python3-module-django version 2.2.3-alt1

July 15, 2019 Alexey Shabalin 2.2.3-alt1 - 2.2.3 - build python3 only - rename package to python3-module-django2.2 - Fixes for the following security vulnerabilities: + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS + CVE-2019-12308 AdminURLFieldWidget XSS +...

5.8CVSS6.6AI score0.2549EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.36 views

Fedora 30 : python-django (2019-d9aa58d863)

update to 2.1.10, security fix for CVE-2019-12781 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. ...

5.3CVSS6.6AI score0.01697EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/07/08 12:0 a.m.31 views

Debian DSA-4476-1 : python-django - security update

Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitisation of clickable links or missing redirects of HTTP requests to HTTPS. C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

7.5CVSS6.2AI score0.05399EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2019/07/07 12:0 a.m.28 views

Debian: Security Advisory (DSA-4476-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05399EPSS
Exploits0References4
Debian
Debian
added 2019/07/05 6:3 p.m.360 views

[SECURITY] [DSA 4476-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4476-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 05, 2019 https://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.05399EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/07/04 12:0 a.m.58 views

Django 1.11.x < 1.11.22, 2.1.x < 2.1.10, 2.2.x < 2.2.3 Insecure HTTP Handling Vulnerability - Linux

Django is prone to insecure handling of HTTP requests. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.8AI score0.01697EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2019/07/03 8:37 p.m.6 views

admindjango-ckeditor-blog (=0.1.0), aileen (>=0.2.0.dev20181221 <=0.2.1) +42 more potentially affected by CVE-2019-12781 via django (>=1.11.0 <=1.11.21)

django PYPI version =1.11.0, =0.2.0.dev20181221, =0.0.19, =4.4.1, =1.0.0, =0.6.0, =0.5.0, =0.1.0, =1.0.0, =1.0.1 - django-defender =0.5.0 and more Source cves: CVE-2019-12781 Source advisory: OSV:GHSA-6C7V-2F49-8H26...

5.3CVSS6.7AI score0.01697EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2019/07/03 8:37 p.m.7 views

django-aesfield (=3.0.0), django-autoconfig (=0.8.0) +11 more potentially affected by CVE-2019-12781 via django (>=2.1.0 <=2.1.1)

django PYPI version =2.1.0, =0.1.0, =0.1.0, =0.3.0, =1.7.3, =0.0.3, =1.1.0, =0.1.2, =1.0.0rc2, =0.1.0, =0.2.0.dev2 Source cves: CVE-2019-12781 Source advisory: OSV:GHSA-6C7V-2F49-8H26...

5.3CVSS6.7AI score0.01697EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/07/02 12:0 a.m.114 views

Debian: Security Advisory (DLA-1842-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.9AI score0.01697EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/07/02 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-4043-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.2AI score0.02563EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/07/02 12:0 a.m.27 views

FreeBSD : Django -- Incorrect HTTP detection with reverse-proxy connecting via HTTPS (b805d7b4-9c0c-11e9-97f0-000c29e96db4)

Django security releases issued : When deployed behind a reverse-proxy connecting to Django via HTTPS, django.http.HttpRequest.scheme would incorrectly detect client requests made via HTTP as using HTTPS. This entails incorrect results for issecure, and buildabsoluteuri, and that HTTP requests...

5.3CVSS6.6AI score0.01697EPSS
Exploits0References3
Rows per page
Query Builder