Tag
critical
advisory
django-s3file Vulnerable to Relative Path Traversal
2 rules 1 TTPThe django-s3file package is vulnerable to relative path traversal attacks via the S3FileMiddleware component, allowing attackers to bypass pre-signed upload locations and potentially leading to unauthorized file access and modification.
django-s3file
path-traversal
web-application
django
2r
1t
high
advisory
Django Multiple Vulnerabilities Leading to SQL Injection, Information Disclosure, and DoS
2 rules 2 TTPsA remote, authenticated attacker can exploit multiple vulnerabilities in Django to perform SQL injections, disclose confidential information, or cause a denial-of-service condition.
django
sql-injection
information-disclosure
denial-of-service
web-application
webserver
2r
2t