Lucene search

GitHub Advisory DatabaseGHSA-QC99-G3WM-HGXR

HistoryMay 01, 2022 - 5:44 p.m.

Django Arbitrary Code Execution

2022-05-0117:44:04

GitHub Advisory Database

github.com

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.4%

JSON

bin/compile-messages.py in Django 0.95 does not quote argument strings before invoking the msgfmt program through the os.system function, which allows attackers to execute arbitrary commands via shell metacharacters in a (1) .po or (2) .mo file.

Affected configurations

Vulners

Node

django-registration_projectdjango-registrationMatch0.95django

CPENameOperatorVersion
djangoeq0.95

CPE	Name	Operator	Version
	django	eq	0.95

References

code.djangoproject.com/changeset/3592

secunia.com/advisories/23826

www.securityfocus.com/bid/22134

bugs.debian.org/cgi-bin/bugreport.cgi?bug=407519

exchange.xforce.ibmcloud.com/vulnerabilities/31627

github.com/advisories/GHSA-qc99-g3wm-hgxr

github.com/django/django/commit/518d406e53

github.com/django/django/commit/a132d411c6986418ee6c0edc331080aa792fee6e

nvd.nist.gov/vuln/detail/CVE-2007-0404

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.4%

JSON

Related for GHSA-QC99-G3WM-HGXR