Lucene search
GoogleOSV:PYSEC-2018-4HistoryFeb 05, 2018 - 3:29 a.m.
PYSEC-2018-4
2018-02-0503:29:00
Google
osv.dev
10
0.002 Low
EPSS
Percentile
57.7%
django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1.11.9, allows remote attackers to obtain potentially sensitive information by leveraging data exposure from the confirm_login_allowed() method, as demonstrated by discovering whether a user account is inactive.
Related
nessus
nessus
Fedora 27 : python-django (2018-2c612c6d92)
2018-02-15 00:00:00
RHEL 8 : django (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 8 : django (Unpatched Vulnerability)
2024-05-11 00:00:00
osv
osv
Django Information leakage in AuthenticationForm
2018-10-03 21:13:54
CVE-2018-6188
2018-02-05 03:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: python-django-1.11.10-1.fc27
2018-02-14 17:33:50
redhatcve
redhatcve
CVE-2018-6188
2018-02-05 13:49:45
cvelist
cvelist
CVE-2018-6188
2018-02-05 03:00:00
veracode
veracode
Information Leakage
2018-02-02 05:13:33
alpinelinux
alpinelinux
CVE-2018-6188
2018-02-05 03:29:00
openvas
openvas
Fedora Update for python-django FEDORA-2018-2c612c6d92
2018-02-15 00:00:00
Ubuntu: Security Advisory (USN-3559-1)
2018-10-26 00:00:00
github
github
Django Information leakage in AuthenticationForm
2018-10-03 21:13:54
debiancve
debiancve
CVE-2018-6188
2018-02-05 03:29:00
freebsd
freebsd
Django -- information leakage
2018-02-01 00:00:00
nvd
nvd
CVE-2018-6188
2018-02-05 03:29:00
ubuntucve
ubuntucve
CVE-2018-6188
2018-02-04 00:00:00
cve
cve
CVE-2018-6188
2018-02-05 03:29:00
prion
prion
Input validation
2018-02-05 03:29:00
ubuntu
ubuntu
Django vulnerabilities
2018-02-07 00:00:00
altlinux
altlinux
redhat
redhat