Django Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

2.2.0	28
2.2.1	28
2.2.2	27
2.2.3	26
2.2.4	22

Contromisure

Official Fix	132
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	15

Sfruttabilità

High	2
Functional	0
Proof-of-Concept	10
Unproven	13
Not Defined	122

Accesso al vettore

Not Defined	0
Physical	0
Local	1
Adjacent	17
Network	129

Autenticazione

Not Defined	0
High	2
Low	48
None	97

Interazione dell'utente

Not Defined	0
Required	45
None	102

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	10
≤5	28
≤6	54
≤7	24
≤8	24
≤9	6
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	2
≤4	11
≤5	40
≤6	48
≤7	26
≤8	15
≤9	5
≤10	0

VulDB

≤1	0
≤2	0
≤3	1
≤4	20
≤5	34
≤6	51
≤7	17
≤8	23
≤9	1
≤10	0

NVD

≤1	0
≤2	0
≤3	1
≤4	1
≤5	1
≤6	7
≤7	15
≤8	21
≤9	3
≤10	9

CNA

≤1	0
≤2	0
≤3	0
≤4	4
≤5	3
≤6	2
≤7	0
≤8	1
≤9	5
≤10	1

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	1
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	7
<2k	17
<5k	12
<10k	57
<25k	52
<50k	2
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	132
<2k	10
<5k	1
<10k	4
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (391): 0.1, 0.2, 0.2.1, 0.2.3, 0.3, 0.3.1, 0.3.2, 0.3.3, 0.3.4, 0.4, 0.5, 0.6, 0.7, 0.7.1, 0.7.2, 0.7.3, 0.7.4, 0.7.5, 0.7.6, 0.7.7, 0.7.8, 0.8, 0.8.4, 0.9, 0.9.1, 0.9.2, 0.9.3, 0.9.4, 0.9.5, 0.9.6, 0.9.7, 0.9.8, 0.9.9, 0.9.11, 0.9.12, 0.9.13, 0.9.14, 0.9.15, 0.9.16, 0.9.17, 0.9.18, 0.9.19, 0.9.21, 0.9.22, 0.9.23, 0.9.24, 0.9.25, 0.9.26, 0.9.27, 0.9.28, 0.9.29, 0.9.31, 0.9.32, 0.9.33, 0.9.34, 0.9.35, 0.9.36, 0.9.37, 0.9.38, 0.9.39, 0.9.41, 0.9.42, 0.9.43, 0.9.44, 0.9.45, 0.9.46, 0.9.47, 0.9.48, 0.9.49, 0.10, 0.91, 0.95, 0.95.1, 0.96, 1, 1.0, 1.0.1, 1.0.2, 1.1, 1.1.2, 1.1.3, 1.1.4, 1.2, 1.2-alpha1, 1.2.1, 1.2.2, 1.2.3, 1.2.4, 1.2.5, 1.2.6, 1.2.7, 1.3, 1.3.1, 1.3.2, 1.3.3, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.4.4, 1.4.5, 1.4.6, 1.4.7, 1.4.8, 1.4.9, 1.4.11, 1.4.12, 1.4.13, 1.4.14, 1.4.15, 1.4.16, 1.4.17, 1.4.18, 1.4.19, 1.4.21, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.5.8, 1.6, 1.6.1, 1.6.2, 1.6.3, 1.6.4, 1.6.5, 1.6.6, 1.6.7, 1.6.8, 1.6.9, 1.7, 1.7.1, 1.7.2, 1.7.3, 1.7.4, 1.7.5, 1.7.6, 1.7.7, 1.7.8, 1.7.9, 1.8, 1.8.1, 1.8.2, 1.8.3, 1.8.4, 1.8.5, 1.8.6, 1.8.7, 1.8.8, 1.8.9, 1.8.11, 1.8.12, 1.8.13, 1.8.14, 1.8.15, 1.8.16, 1.8.17, 1.8.18, 1.9, 1.9.1, 1.9.2, 1.9.3, 1.9.4, 1.9.5, 1.9.6, 1.9.7, 1.9.8, 1.9.9, 1.9.11, 1.9.12, 1.10, 1.10.1, 1.10.2, 1.10.3, 1.10.4, 1.10.5, 1.10.6, 1.10.7, 1.10.8, 1.10.9, 1.10.11, 1.10.12, 1.10.13, 1.10.14, 1.10.15, 1.10.16, 1.10.17, 1.10.18, 1.10.19, 1.10.21, 1.10.22, 1.10.23, 1.10.24, 1.10.25, 1.10.26, 1.10.27, 1.10.28, 1.11, 1.11.1, 1.11.2, 1.11.3, 1.11.4, 1.11.5, 1.11.6, 1.11.7, 1.11.8, 1.11.9, 1.11.11, 1.11.12, 1.11.13, 1.11.14, 1.11.15, 1.11.16, 1.11.17, 1.11.18, 1.11.19, 1.11.21, 1.11.22, 1.11.23, 1.11.24, 1.11.25, 1.11.26, 1.11.27, 2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.7, 2.1.8, 2.1.9, 2.1.11, 2.1.12, 2.1.13, 2.1.14, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.2.5, 2.2.6, 2.2.7, 2.2.8, 2.2.9, 2.2.11, 2.2.12, 2.2.13, 2.2.14, 2.2.15, 2.2.16, 2.2.17, 2.2.18, 2.2.19, 2.2.21, 2.2.22, 2.2.23, 2.2.24, 2.2.25, 2.2.26, 2.2.27, 2.3, 2.4, 2.5, 2.6, 2.15, 2.15.1, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.11, 3.0.12, 3.0.13, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.1.5, 3.1.6, 3.1.7, 3.1.8, 3.1.9, 3.1.11, 3.1.12, 3.1.13, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.2.5, 3.2.6, 3.2.7, 3.2.8, 3.2.9, 3.2.11, 3.2.12, 3.2.13, 3.2.14, 3.2.15, 3.2.16, 3.2.17, 3.2.18, 3.2.19, 3.2.21, 3.2.22, 3.2.23, 3.2.24, 3.3, 3.4, 3.5, 3.6, 3.7, 3.8, 3.9, 3.11, 3.11.1, 3.15, 3.15.1, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.1.4, 4.1.5, 4.1.6, 4.1.7, 4.1.8, 4.1.9, 4.1.11, 4.1.12, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8, 4.2.9, 5, 5.0, 5.0-beta, 5.0.1, 5.0.2, 5.1, 5.2, 5.3, 5.4, 5.5, 12.0, 12.1, 12.2, 12.3, 2022.2.2

Tipo di software: Content Management System

Data di pubblicazione	Base	Temp	Vulnerabilità	0day	Oggi	Sfr	Con	CTI	CVE
24/04/2024	5.0	4.8	python-social-auth social-app-django Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-32879
24/04/2024	5.0	4.8	python-social-auth social-app-django Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-32879
19/03/2024	7.5	7.3	django-wiki Article denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-28865
12/03/2024	8.8	8.1	Microsoft SQL Server Backend for Django Privilege Escalation	$25k-$100k	$5k-$25k	Unproven	Official Fix	0.05	CVE-2024-26164
08/03/2024	4.8	4.8	Django MarkdownX cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2024-2319
04/03/2024	3.5	3.4	Django Regular Expression django.utils.text.Truncator.words denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-27351
06/02/2024	5.5	5.4	Django intcomma Template Filter denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-24680
01/11/2023	5.9	5.8	Django NFKC Normalization forms.py denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-46695
23/10/2023	4.8	4.7	django-grappelli Relative URL switch.py Redirect	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-46898
04/10/2023	5.3	5.1	Django django.utils.text.Truncator denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-43665
04/09/2023	4.3	4.1	Django django.utils.encoding.uri_to_iri denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-41164
04/08/2023	8.0	7.9	django-sspanel admin_view.py escalazione di privilegi	$0-$5k	$0-$5k	Not Defined	Not Defined	0.05	CVE-2023-38941
03/07/2023	5.9	5.8	Django URLValidator denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-36053
27/05/2023	4.9	4.8	Django-SES SESEventWebhookView autenticazione debole	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-33185
04/05/2023	7.6	7.5	python-django escalazione di privilegi	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-31047
08/03/2023	4.4	4.3	Mobile Vikings Django AJAX Utilities Backslash pagination.js Pagination cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.09	CVE-2017-20182
15/02/2023	5.9	5.8	Django Multipart Request Parser denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-24580
01/02/2023	5.9	5.8	Django Header denial of service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-23969
05/01/2023	4.4	4.3	University of Cambridge django-ucamlookup Lookup cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.09	CVE-2016-15010
18/12/2022	4.4	4.3	django-openipam exposed_hosts.html cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.56	CVE-2022-4595
15/12/2022	4.4	4.3	django-photologue Default Template photo_detail.html cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.56	CVE-2022-4526
16/10/2022	5.5	5.4	Django URL escalazione di privilegi	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2022-41323
11/10/2022	6.9	6.7	django-mfa2 Device Registration FIDO2.py autenticazione debole	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-42731
04/08/2022	3.5	3.4	Django Header FileResponse rivelazione di un 'informazione	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2022-36359
23/07/2022	4.8	4.7	Django REST Framework DRF Browsable API cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2018-25045

Django Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

Contromisure

Sfruttabilità

Accesso al vettore

Autenticazione

Interazione dell'utente

C3BM Index

L'anno scorso

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Fornitore

Research

Exploiter 0 giorni

Exploiter aujourd'hui

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

🔒 Login Required

Do you know our Splunk app?