Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1040-1
HistoryJan 07, 2011 - 12:00 a.m.

Django vulnerabilities

2011-01-0700:00:00
ubuntu.com
31

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.132 Low

EPSS

Percentile

95.5%

JSON

Releases

  • Ubuntu 10.10
  • Ubuntu 10.04
  • Ubuntu 9.10

Packages

  • python-django - High-level Python web development framework

Details

Adam Baldwin discovered that Django did not properly validate query string
lookups. This could be exploited to provide an information leak to an
attacker with admin privilieges. (CVE-2010-4534)

Paul McMillan discovered that Django did not validate the length of the
token used when generating a password reset. An attacker could exploit
this to cause a denial of service via resource exhaustion. (CVE-2010-4535)

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchpython-django< 1.1.1-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchpython-django-doc< 1.1.1-1ubuntu1.1UNKNOWN
Ubuntu10.10noarchpython-django< 1.2.3-1ubuntu0.2.10.10.1UNKNOWN
Ubuntu10.10noarchpython-django-doc< 1.2.3-1ubuntu0.2.10.10.1UNKNOWN
Ubuntu10.04noarchpython-django< 1.1.1-2ubuntu1.2UNKNOWN
Ubuntu10.04noarchpython-django-doc< 1.1.1-2ubuntu1.2UNKNOWN

Related

fedora 2
nessus 4
openvas 8
osv 4
ubuntucve 2
cve 2
github 2
prion 2
debiancve 2
gitlab 2
fedora
fedora
[SECURITY] Fedora 14 Update: Django-1.2.4-1.fc14
2011-01-13 23:34:14
[SECURITY] Fedora 13 Update: Django-1.2.4-1.fc13
2011-01-13 23:28:26
nessus
nessus
FreeBSD : django -- multiple vulnerabilities (14a37474-1383-11e0-8a58-00215c6a37bb)
2010-12-30 00:00:00
Ubuntu 9.10 / 10.04 LTS / 10.10 : python-django vulnerabilities (USN-1040-1)
2011-01-07 00:00:00
Fedora 14 : Django-1.2.4-1.fc14 (2011-0120)
2011-01-14 00:00:00
openvas
openvas
Fedora Update for Django FEDORA-2011-0120
2011-01-14 00:00:00
Ubuntu Update for python-django vulnerabilities USN-1040-1
2011-01-11 00:00:00
Ubuntu: Security Advisory (USN-1040-1)
2011-01-11 00:00:00
osv
osv
PYSEC-2011-8
2011-01-10 20:00:00
Moderate severity vulnerability that affects django
2018-07-23 19:51:40
Moderate severity vulnerability that affects django
2018-07-23 19:51:59
ubuntucve
ubuntucve
CVE-2010-4534
2010-12-22 00:00:00
CVE-2010-4535
2010-12-22 00:00:00
cve
cve
CVE-2010-4534
2011-01-10 20:00:00
CVE-2010-4535
2011-01-10 20:00:00
github
github
Moderate severity vulnerability that affects django
2018-07-23 19:51:40
Moderate severity vulnerability that affects django
2018-07-23 19:51:59
prion
prion
Integer overflow
2011-01-10 20:00:00
Design/Logic Flaw
2011-01-10 20:00:00
debiancve
debiancve
CVE-2010-4534
2011-01-10 20:00:00
CVE-2010-4535
2011-01-10 20:00:00
gitlab
gitlab
Moderate severity vulnerability that affects django
2018-07-23 00:00:00
Improper Input Validation
2018-07-23 00:00:00

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.132 Low

EPSS

Percentile

95.5%

JSON
Related for USN-1040-1
fedora2nessus4openvas8osv4ubuntucve2cve2github2prion2debiancve2gitlab2