Lucene search
+L

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2021-45116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. Due to leveraging the Django Template Language's variable resoluti...

7.5CVSS7.1AI score0.01855EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.34 views

Debian DLA-3177-1 : python-django - LTS security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3177 advisory. It was discovered that there were multiple vulnerabilies in Django, a popular Python-based development framework: CVE-2022-28346: An issue was discovered in Djang...

9.8CVSS7.3AI score0.18516EPSS
Exploits3References8
Debian
Debian
added 2022/11/04 2:36 p.m.40 views

[SECURITY] [] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3177-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 04, 2022 https://wiki.debian.org/LTS -...

9.8CVSS8.2AI score0.18516EPSS
Exploits3
Debian
Debian
added 2022/11/04 2:35 p.m.37 views

[SECURITY] [] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3177-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 04, 2022 https://wiki.debian.org/LTS -...

9.8CVSS9.8AI score0.18516EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2022/07/05 2:41 p.m.578 views

Moderate: Red Hat Security Advisory: Satellite 6.11 Release

An update is now available for Red Hat Satellite 6.11 Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: libsolv: Heap-based buff...

9.8CVSS7.6AI score0.49246EPSS
Exploits14References476
ALT Linux
ALT Linux
added 2022/01/24 12:0 a.m.39 views

Security fix for the ALT Linux 10 package python3-module-django version 3.2.11-alt1

3.2.11-alt1 built Jan. 24, 2022 Alexey Shabalin in task 293890 Jan. 18, 2022 Alexey Shabalin - new version 3.2.11 - Fixes for the following security vulnerabilities: + CVE-2021-45115 Prevented DoS vector in UserAttributeSimilarityValidator. + CVE-2021-45116 Fixed potential information disclosure ...

5CVSS6.4AI score0.02397EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/01/12 7:21 p.m.6 views

admin-tool-button (>=1.0.1a0 <=1.0.5a0), apis-ampel (=0.1.0) +51 more potentially affected by CVE-2021-45116 via django (>=3.2.0 <=3.2.10)

django PYPI version =3.2.0, =1.0.1a0, =0.2.0, =22.0.0.dev21, =22.0.0.dev13, =22.0.0.dev29, =22.0.0.dev30 - autoreduce-utils =0.1.0 - common-framework =2021.4.1 - directory-validators =9.0.0 - django-admin-taggit-ui =0.1.0.dev0 - django-blocklist =1.0.0 - django-brazilian-zipcode =0.1.0 -...

7.5CVSS7AI score0.01855EPSS
Exploits0
Mageia
Mageia
added 2022/01/11 7:12 a.m.56 views

Updated python-django packages fix security vulnerability

UserAttributeSimilarityValidator incurred significant overhead evaluating submitted password that were artificially large in relative to the comparison values. On the assumption that access to user registration was unrestricted this provided a potential vector for a denial-of-service attack...

7.5CVSS2.1AI score0.02397EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/11 12:0 a.m.25 views

Django < 2.2.26, 3.x < 3.2.11, 4.x < 4.0.1 Multiple Vulnerabilities - Windows

Django is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.02397EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/11 12:0 a.m.32 views

Django < 2.2.26, 3.x < 3.2.11, 4.x < 4.0.1 Multiple Vulnerabilities - Linux

Django is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.02397EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/07 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5204-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02397EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2022/01/05 12:15 a.m.4 views

aimmo (>=0.61.9 <=1.3.3b690), ambition-edc (>=0.3.68 <=0.3.72) +71 more potentially affected by CVE-2021-45116 via django (>=2.2.0 <=2.2.25)

django PYPI version =2.2.0, =0.61.9, =0.3.68, =0.14.0, =5.2.1, =0.1.0, =4.15.0, =4.15.0, =1.0.1, =1.0.0, =0.0.1, =0.0.1, =2.0.0, =2.2.0 - django-country-filter =0.0.1 and more Source cves: CVE-2021-45116 Source advisory: OSV:PYSEC-2022-2...

7.5CVSS7AI score0.01855EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/01/05 12:15 a.m.3 views

ae-django-utils (=0.3.1), apollo-sdk (>=0.2.0 <=0.2.11) +32 more potentially affected by CVE-2021-45116 via django (>=4.0.0 <=4.0.0rc1)

django PYPI version =4.0.0, =0.2.0, =0.6.1, =2.16.1, =0.1.5, =1.0.7, =0.9.0, =0.4.0, =0.1.0, =0.1.1 and more Source cves: CVE-2021-45116 Source advisory: OSV:PYSEC-2022-2...

7.5CVSS7AI score0.01855EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/01/05 12:0 a.m.46 views

FreeBSD : Django -- multiple vulnerabilities (d3e023fb-6e88-11ec-b948-080027240888)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d3e023fb-6e88-11ec-b948-080027240888 advisory. - An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1...

7.5CVSS6.7AI score0.02397EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2022/01/04 11:12 p.m.5 views

CVE-2021-45116

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. Due to leveraging the Django Template Language's variable resolution logic, the dictsort template filter was potentially vulnerable to information disclosure, or an unintended method call, if passed a...

7.3AI score0.01855EPSS
Exploits0References5
CVE
CVE
added 2022/01/04 11:12 p.m.180 views

CVE-2021-45116

CVE-2021-45116 affects Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. The issue stems from the Django Template Language variable resolution logic; the dictsort template filter could disclose information or trigger an unintended method call when given a crafted key. Remediation...

7.5CVSS7.1AI score0.01855EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2022/01/04 5:5 p.m.34 views

CVE-2021-45116

An information-disclosure flaw was found in Django, where the dictsort filter in Django's Template Language did not correctly validate user input. A network attacker could exploit this flaw using a suitably crafted key to force information disclosure or unintended method calls...

7.5CVSS1.3AI score0.01855EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/01/04 10:0 a.m.35 views

CVE-2021-45116

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. Due to leveraging the Django Template Language's variable resolution logic, the dictsort template filter was potentially vulnerable to information disclosure, or an unintended method call, if passed a...

7.5CVSS7.1AI score0.01855EPSS
Exploits0References2
Rows per page
Query Builder