VDB
CNVD-2019-25803
CNVD-2019-25803
PUBLISHED
Django是Django基金会的一套基于Python语言的开源Web应用框架。该框架包括面向对象的映射器、视图系统、模板系统等。 Django存在SQL注入漏洞,攻击者可利用该漏洞执行SQL命令。
Exploit Intelligence
- CVE-2019-14234 — Django JSONField SQL Injection | Academic security project (github-poc-repo)
- CVE-2019-14234 — Django JSONField SQL Injection | Academic security project (github-poc-repo)
- CVE-2019-14234 — Django JSONField SQL Injection | Academic security project (github-poc)
- CVE-2019-14234 — Django JSONField SQL Injection | Academic security project (github-poc)
- POC-Django JSONField/HStoreField SQL Injection Vulnerability (CVE-2019-14234) (github-poc-repo)
- POC-Django JSONField/HStoreField SQL Injection Vulnerability (CVE-2019-14234) (github-poc-repo)
- POC-Django JSONField/HStoreField SQL Injection Vulnerability (CVE-2019-14234) (github-poc)
- POC-Django JSONField/HStoreField SQL Injection Vulnerability (CVE-2019-14234) (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
…and 2 more exploits
Timeline
- Aug 1, 2019 CVE Published