ryu22eBlog

Enjoy programming!

On Django Vulnerabilities CVE-2020-24583 and CVE-2020-24584 commentary

Japanese edition This article describes the Django vulnerabilities CVE-2020-24583 and CVE-2020-24584, which were fixed on September 1, 2020. This vulnerability can give extra permissions to directories created by the application See below for release information on the official website: Django security releases issued: 3.1.1, 3.0.10 and 2.2.16 | Weblog | Django ...

September 28, 2020 · Ryuji Tsutsui

On Django Vulnerabilities CVE-2020-13254 and CVE-2020-13596 commentary

Japanese edition This article describes the Django vulnerabilities CVE-2020-13254 and CVE-2020-13596, which were fixed on June 3, 2020. CVE-2020-13254 is a potential data breach CVE-2020-13596 is a vulnerability related to XSS See below for release information on the official website: Django security releases issued: 3.0.7 and 2.2.13 | Weblog | Django ...

June 9, 2020 · Ryuji Tsutsui

Description the Django Vulnerability CVE-2020-7471

Japanese edition This article describes the Django vulnerability CVE-2020-7471, which was fixed on February 3, 2020. This vulnerability allows SQL injection Please refer to the following for release information on the official website. Django security releases issued: 3.0.3, 2.2.10, and 1.11.28 | Weblog | Django ...

February 6, 2020 · Ryuji Tsutsui

Description the Django Vulnerability CVE-2019-19844

Japanese edition This article describes the Django vulnerability CVE-2019-19844, which was fixed on December 18, 2019. This vulnerability allows for account hijacking Please refer to the following for release information on the official website. Django security releases issued: 3.0.1, 2.2.9, and 1.11.27 | Weblog | Django ...

December 25, 2019 · Ryuji Tsutsui