Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-0085

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00414EPSS
Exploits0References18
Github Security Blog
Github Security Blogadded 2022/01/12 7:20 p.m.29 views

Denial-of-service in Django

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in evaluating a submitted password that was artificially large in relation to the comparison values. In a situation where access to user...

7.5CVSS7.6AI score0.00414EPSS
Exploits0References11Affected Software1
Veracode
Veracodeadded 2022/01/06 9:9 a.m.35 views

Denial Of Service (DoS)

django is vulnerable to denial of service DoS attacks. A malicious user is able to craft an artificially large password relative to the comparison values, to significantly overhead UserAttributeSimilarityValidator component resulting in denial of service conditions...

7.5CVSS3.8AI score0.00414EPSS
Exploits0References11Affected Software4
Prion
Prionadded 2022/01/05 12:15 a.m.18 views

Design/Logic Flaw

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in evaluating a submitted password that was artificially large in relation to the comparison values. In a situation where access to user...

5CVSS7.4AI score0.00414EPSS
Exploits0References5Affected Software2
AlpineLinux
AlpineLinuxadded 2022/01/04 11:16 p.m.37 views

CVE-2021-45115

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in evaluating a submitted password that was artificially large in relation to the comparison values. In a situation where access to user...

7.5CVSS7.6AI score0.00414EPSS
Exploits0
CVE
CVEadded 2022/01/04 11:16 p.m.190 views

CVE-2021-45115

CVE-2021-45115 affects Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. The issue is in UserAttributeSimilarityValidator, which incurs significant CPU overhead when validating passwords that are artificially large relative to comparison values, potentially enabling a denial-of-s...

7.5CVSS7.3AI score0.00414EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVEadded 2022/01/04 5:5 p.m.38 views

CVE-2021-45115

A resource-consumption flaw was found in django's UserAttributeSimilarityValidator, where it incurred significant overhead evaluating any submitted password that was artificially large relative to comparison values. A network attacker could exploit this flaw to cause a denial of service...

7.5CVSS3.1AI score0.00414EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2022/01/04 10:0 a.m.31 views

CVE-2021-45115

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in evaluating a submitted password that was artificially large in relation to the comparison values. In a situation where access to user...

7.5CVSS7.1AI score0.00414EPSS
Exploits0References2
FreeBSD
FreeBSDadded 2021/12/20 12:0 a.m.28 views

Django -- multiple vulnerabilities

Django Release reports: CVE-2021-45115: Denial-of-service possibility in UserAttributeSimilarityValidator. CVE-2021-45116: Potential information disclosure in dictsort template filter. CVE-2021-45452: Potential directory-traversal via Storage.save...

7.5CVSS2.4AI score0.00414EPSS
Exploits0References1
Rows per page
Query Builder