Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.3 views

SUSE CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS7.8AI score0.02737EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2021/12/09 8:20 p.m.1 views

django: Potential directory traversal via ``admindocs``

A flaw was found in django. Staff members could use the :mod:django.contrib.admindocs TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been customized by the developers to also expose the file contents, then not...

4.9CVSS7.2AI score0.02737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/16 3:43 p.m.9 views

django: Potential directory traversal via ``admindocs``

A flaw was found in django. Staff members could use the :mod:django.contrib.admindocs TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been customized by the developers to also expose the file contents, then not...

4.9CVSS7.2AI score0.02737EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.7 views

The vulnerability of the TemplateDetailView function in the django/contrib/admindocs component of the Django web application’s software platform, related to vulnerabilities in pathname restrictions for directories, allows attackers to gain access to confidential data.

The vulnerability of the TemplateDetailView function in the django/contrib/admindocs component of the Django software development platform relates to shortcomings in pathname restrictions for directories. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

4.9CVSS6.5AI score0.02737EPSS
Exploits0References11Affected Software4
RedHat Linux
RedHat Linux
added 2021/09/15 1:41 p.m.5 views

django: Potential directory traversal via ``admindocs``

A flaw was found in django. Staff members could use the :mod:django.contrib.admindocs TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been customized by the developers to also expose the file contents, then not...

4.9CVSS7.2AI score0.02737EPSS
Exploits0References5
OSV
OSV
added 2021/06/02 9:0 a.m.2 views

UBUNTU-CVE-2021-33203

Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if and only if the default admindocs templates have been...

4.9CVSS6.8AI score0.02737EPSS
Exploits0References5
Rows per page
Query Builder