제출 #790287: liangliangyy DjangoBlog <= 2.1.0.0 Hardcoded Credentials정보

제목liangliangyy DjangoBlog <= 2.1.0.0 Hardcoded Credentials
설명DjangoBlog through x.x.x.x contains a hardcoded Amap (Gaode Maps) API key in owntracks/views.py. The key is publicly exposed in the open-source repository and can be abused for unauthorized API calls, potentially incurring costs and enabling location data queries.
원천⚠️ https://github.com/3em0/cve_repo/blob/main/DjangoBlog/Vuln-5-Hardcoded-Amap-API-Key.md
사용자
 Dem0 (UID 82596)
제출2026. 03. 26. PM 05:09 (1 월 ago)
모더레이션2026. 04. 19. AM 07:11 (24 days later)
상태수락
VulDB 항목358215 [liangliangyy DjangoBlog 까지 2.1.0.0 Amap API Call owntracks/views.py key 약한 암호화]
포인트들17

이전개요다음