Django Project Django 3.1.12

CPE Details

Django Project Django 3.1.12
3.1.12
2021-06-11
16h32 +00:00
2021-06-11
16h46 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:djangoproject:django:3.1.12:*:*:*:*:*:*:*

Informations

Vendor

djangoproject

Product

django

Version

3.1.12

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-44420 2021-12-07 21h55 +00:00 In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths.
7.3
High
CVE-2021-35042 2021-07-02 07h54 +00:00 Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection if order_by is untrusted input from a client of a web application.
9.8
Critical