Exposição de Django

Web frameworks

60

score de exposição

26.488

sites usam

0

em exploração

2

críticos

CVEs

33 resultados

CVE-2026-1287MEDIUMPotential SQL injection in column aliases via control charactersEPSS 0.5%CVE-2026-1312MEDIUMPotential SQL injection via QuerySet.order_by and FilteredRelationEPSS 0.5%CVE-2026-4277CRITICALPrivilege abuse in GenericInlineModelAdminEPSS 0.5%CVE-2026-3902HIGHASGI header spoofing via underscore/hyphen conflationEPSS 0.4%CVE-2026-5766MEDIUMPotential denial-of-service vulnerability in ASGI requests via file upload limit bypassEPSS 0.4%CVE-2026-35193LOWPotential exposure of private data via missing Vary: Authorization in UpdateCacheMiddlewareEPSS 0.4%CVE-2026-6907LOWPotential exposure of private data due to incorrect handling of Vary: * in UpdateCacheMiddlewareEPSS 0.4%CVE-2026-48587LOWPotential exposure of private data via whitespace padding in Vary headerEPSS 0.4%CVE-2026-25674LOWPotential incorrect permissions on newly created file system objectsEPSS 0.3%CVE-2026-4292LOWPrivilege abuse in ModelAdmin.list_editableEPSS 0.3%CVE-2026-8404LOWPotential exposure of private data via case-sensitive Cache-Control directives in UpdateCacheMiddlewareEPSS 0.3%CVE-2026-6873LOWSigned cookie salt namespace collision in django.http.HttpRequest.get_signed_cookieEPSS 0.2%CVE-2026-7666LOWPotential unencrypted email transmission via STARTTLS in the SMTP backendEPSS 0.1%

← anteriorpágina 2 / 2próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →