Lucene search
K

5 matches found

NVD
NVD
added 2016/02/08 7:59 p.m.20 views

CVE-2016-2048

Django 1.9.x before 1.9.2, when ModelAdmin.saveas is set to True, allows remote authenticated users to bypass intended access restrictions and create ModelAdmin objects via the "Save as New" option when editing objects and leveraging the "change" permission...

6CVSS5.2AI score0.01522EPSS
Exploits0References3
Prion
Prion
added 2016/02/08 7:59 p.m.16 views

Design/Logic Flaw

Django 1.9.x before 1.9.2, when ModelAdmin.saveas is set to True, allows remote authenticated users to bypass intended access restrictions and create ModelAdmin objects via the "Save as New" option when editing objects and leveraging the "change" permission...

6CVSS6.7AI score0.01522EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2016/02/08 7:59 p.m.17 views

CVE-2016-2048

Django 1.9.x before 1.9.2, when ModelAdmin.saveas is set to True, allows remote authenticated users to bypass intended access restrictions and create ModelAdmin objects via the "Save as New" option when editing objects and leveraging the "change" permission...

6CVSS6.5AI score0.01522EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/02/08 7:0 p.m.27 views

CVE-2016-2048

Django 1.9.x before 1.9.2, when ModelAdmin.saveas is set to True, allows remote authenticated users to bypass intended access restrictions and create ModelAdmin objects via the "Save as New" option when editing objects and leveraging the "change" permission...

5.5AI score0.01522EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2016/02/08 7:0 p.m.24 views

CVE-2016-2048

Django 1.9.x before 1.9.2, when ModelAdmin.saveas is set to True, allows remote authenticated users to bypass intended access restrictions and create ModelAdmin objects via the "Save as New" option when editing objects and leveraging the "change" permission...

6CVSS5.8AI score0.01522EPSS
Exploits0
Rows per page
Query Builder