16 matches found
EUVD-2018-0034
Malware in sbrugna...
EUVD-2018-0033
Malware in sbrugna...
CVE-2024-13744
creationtimestamp| type| source ---|---|--- 2025-04-04 04:35:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10389 2025-04-04 07:48:27+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114278590468850131 2025-04-04 07:48:27+00:00| seen|...
CVE-2024-56903
creationtimestamp| type| source ---|---|--- 2025-02-02 22:00:05+00:00| published-proof-of-concept| Telegram/Zz7KT0QW6jx788iRVLTrCBTX3Cn9rhr0SRN7kgKXbioAXY 2025-02-03 20:53:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113941938439591094 2025-02-03 21:15:48+00:00| seen|...
GHSA-QH9X-MC42-VG4G django-anymail Includes Sensitive Information in Log Files
Anymail django-anymail version version 0.2 through 1.3 contains a CWE-532, CWE-209 vulnerability in WEBHOOKAUTHORIZATION setting value that can result in An attacker with access to error logs could fabricate email tracking events. This attack appear to be exploitable via If you have exposed your...
CVE-2021-31207
creationtimestamp| type| source ---|---|--- 2021-05-12 14:21:07+00:00| seen| https://t.me/truesecator/1705 2021-08-19 15:41:58+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/exchangeproxyshellrce.rb 2021-08-23 12:25:04+00:00| seen|...
CVE-2006-4313
creationtimestamp| type| source ---|---|--- 2020-07-16 15:38:10+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/networking/ciscovpn3000ftpbypass.rb 2025-02-06 03:13:38+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:17+00:00|...
DEBIAN-CVE-2018-1000089
Anymail django-anymail version version 0.2 through 1.3 contains a CWE-532, CWE-209 vulnerability in WEBHOOKAUTHORIZATION setting value that can result in An attacker with access to error logs could fabricate email tracking events. This attack appear to be exploitable via If you have exposed your...
UBUNTU-CVE-2018-1000089
Anymail django-anymail version version 0.2 through 1.3 contains a CWE-532, CWE-209 vulnerability in WEBHOOKAUTHORIZATION setting value that can result in An attacker with access to error logs could fabricate email tracking events. This attack appear to be exploitable via If you have exposed your...
[SECURITY] [DSA 4107-1] django-anymail security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4107-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 07, 2018 https://www.debian.org/security/faq -...
PYSEC-2018-7
webhooks/base.py in Anymail aka django-anymail before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOKAUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events...
DEBIAN-CVE-2018-6596
webhooks/base.py in Anymail aka django-anymail before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOKAUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events...
CVE-2018-6596
webhooks/base.py in Anymail aka django-anymail before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOKAUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events...
Code injection
webhooks/base.py in Anymail aka django-anymail before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOKAUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events...
CVE-2018-6596
webhooks/base.py in Anymail aka django-anymail before 1.2.1 is prone to a timing attack vulnerability on the WEBHOOKAUTHORIZATION secret, which allows remote attackers to post arbitrary e-mail tracking events...
CVE-2018-6596
CVE-2018-6596 affects Anymail (django-anymail) webhooks/base.py, where a timing attack on the WEBHOOK_AUTHORIZATION secret can let remote attackers post arbitrary email tracking events. Affected versions are before 1.2.1. Remediation as per sources: upgrade to Django-Anymail 1.2.1 or later; Debia...