CVE-2026-44987

SysReptor (fully customizable pentest reporting platform) has a privilege-escalation issue in versions before 2026.29: users with User Admin permissions can change the emails of users with Superuser permissions. If the installed forgot-password feature is enabled (non-default), these users can re...

aratinga (=0.1.0a0.dev3), coop (>=7.1.0 <=7.2.1) +7 more potentially affected by CVE-2026-44200 via wagtail (>=7.1.0 <=7.2.3)

wagtail PYPI version =7.1.0, =7.1.0, =1.1.1, =2.0.0, =0.0.1, =7.1.0a1, =7.2.0b0 Source cves: CVE-2026-44200 Source advisory: OSV:GHSA-67RV-MG8Q-5PF3...

aratinga (=0.1.0a0.dev3), coop (>=7.1.0 <=7.2.1) +7 more potentially affected by CVE-2026-44201 via wagtail (>=7.1.0 <=7.2.3)

wagtail PYPI version =7.1.0, =7.1.0, =1.1.1, =2.0.0, =0.0.1, =7.1.0a1, =7.2.0b0 Source cves: CVE-2026-44201 Source advisory: OSV:GHSA-P5GM-92H4-6PV6...

aratinga (=0.1.0a0.dev3), coop (=7.1.0) +5 more potentially affected by CVE-2026-28223 via wagtail (>=7.1.0 <=7.1.3)

wagtail PYPI version =7.1.0, =1.1.1, =2.0.0, =0.0.1, =7.1.0a1, =7.1.0b0 Source cves: CVE-2026-28223 Source advisory: OSV:GHSA-P4V8-RW59-93CQ...

EUVD-2024-1017

Malicious code in bioql PyPI...

Remote Code Execution Vulnerability in Microsoft Django Backend for SQL Server

Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability...

CVE-2024-26164

Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability...

CVE-2024-26164

Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability...

CVE-2024-26164 Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability

...

KLA65143 ACE vulnerability in Microsoft SQL Server

A remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-26164 Related products Microsoft-SQL-Server CVE list CVE-2024-26164 critical KB list Solution Install necessary updates...

Microsoft Django Backend for SQL Server Security Vulnerability

Microsoft Django Backend for SQL Server is a database backend for the Django web framework for connecting to and manipulating Microsoft SQL Server databases from Microsoft USA. A security vulnerability exists in Microsoft Django Backend for SQL Server. An attacker can exploit the vulnerability to...

PT-2024-2256 · Microsoft · Django Backend For Sql Server

Name of the Vulnerable Software and Affected Versions: Microsoft Django Backend for SQL Server affected versions not specified Description: The issue is related to the failure to protect the SQL query structure when handling an unsanitized parameter, which can be exploited by a remote attacker to...

Vulnerability fixed in Microsoft SQL Server

Microsoft has fixed and vulnerability in SQL Server. The vulnerability is located in the Django backend and allows a malicious party to be able to use the client application of the victim to execute an SQL injection and thus execute arbitrary code execute arbitrary code with the victim's privileg...

atila-vue (>=0.1.3 <=0.1.3.5), contrail (>=0.3.0 <=1.0.2) +27 more potentially affected by CVE-2019-19844 via django (>=3.0.0 <=3.0.0rc1)

django PYPI version =3.0.0, =0.1.3, =0.3.0, =0.1.1, =0.0.1, =0.0.1, =0.2.1, =0.8.0, =0.7.0, =0.10.0, =0.5.0, =0.6.4 and more Source cves: CVE-2019-19844 Source advisory: OSV:GHSA-VFQ6-HQ5R-27R6...