On Django Vulnerabilities CVE-2020-13254 and CVE-2020-13596 commentary

Japanese edition

This article describes the Django vulnerabilities CVE-2020-13254 and CVE-2020-13596, which were fixed on June 3, 2020.

CVE-2020-13254 is a potential data breach

CVE-2020-13254 is a potential data breach

CVE-2020-13596 is a vulnerability related to XSS

CVE-2020-13596 is a vulnerability related to XSS

See below for release information on the official website:

Django security releases issued: 3.0.7 and 2.2.13 | Weblog | Django

[Read More]

Description the Django Vulnerability CVE-2019-19844

Japanese edition

This article describes the Django vulnerability CVE-2019-19844, which was fixed on December 18, 2019.

This vulnerability allows for account hijacking

This vulnerability allows for account hijacking

Please refer to the following for release information on the official website.

Django security releases issued: 3.0.1, 2.2.9, and 1.11.27 | Weblog | Django

[Read More]

About Google Analytics adopted by ryu22eBlog

ryu22eBlog (hereinafter, this site) uses Google’s service Google Analytics to acquire user information. Google Analytics uses first-party cookies to collect anonymous traffic data. First-party cookies store information such as the start time of the current session, whether you have visited the site in the past, and from which site. Browsers do not share first-party cookies between domains. In this site, we use the information obtained by Google Analytics to the extent necessary to achieve the following usage purposes. [Read More]