Wang Baohua discovered that Django incorrectly extracted archive files. A
remote attacker could possibly use this issue to extract files outside of
their expected location.

References

ubuntu.com/security/CVE-2021-3281

ubuntu.com/security/notices/USN-4715-1

fedora 2

nessus 7

ubuntu 2

openvas 8

cve 1

prion 1

debian 2

githubexploit 1

osv 7

alpinelinux 1

cvelist 1

redhatcve 1

ubuntucve 1

archlinux 1

veracode 1

github 1

debiancve 1

nvd 1

altlinux 2

redhat 4

fedora

[SECURITY] Fedora 33 Update: python-django-3.0.12-1.fc33

2021-02-13 01:40:25

[SECURITY] Fedora 32 Update: python-django-3.0.13-1.fc32

2021-03-13 20:53:46

nessus

Debian DLA-2540-1 : python-django security update

2021-02-02 00:00:00

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Django vulnerability (USN-4715-1)

2021-02-01 00:00:00

Fedora 33 : python-django (2021-5329c680f7)

2021-02-16 00:00:00

ubuntu

Django vulnerability

2021-02-01 00:00:00

Django vulnerability

2021-02-01 00:00:00

openvas

Ubuntu: Security Advisory (USN-4715-1)

2021-02-02 00:00:00

Django 2.2 < 2.2.18, 3.0 < 3.0.12, 3.1 < 3.1.6 Directory Traversal Vulnerability - Linux

2021-02-03 00:00:00

Django 2.2 < 2.2.18, 3.0 < 3.0.12, 3.1 < 3.1.6 Directory Traversal Vulnerability - Windows

2021-02-03 00:00:00

cve

CVE-2021-3281

2021-02-02 07:15:14

prion

Directory traversal

2021-02-02 07:15:00

debian

[SECURITY] [DLA 2540-1] python-django security update

2021-02-01 18:37:39

[SECURITY] [DLA 3164-1] python-django security update

2022-10-28 17:28:30

githubexploit

Exploit for Path Traversal in Djangoproject Django

2021-07-05 08:25:26

osv

PYSEC-2021-9

2021-02-02 07:15:00

CVE-2021-3281

2021-02-02 07:15:14

BIT-django-2021-3281

2024-03-06 10:54:53

alpinelinux

CVE-2021-3281

2021-02-02 07:15:14

cvelist

CVE-2021-3281

2021-02-02 06:16:28

redhatcve

CVE-2021-3281

2021-02-01 18:27:55

ubuntucve

CVE-2021-3281

2021-02-01 00:00:00

archlinux

[ASA-202102-18] python-django: directory traversal

2021-02-07 00:00:00

veracode

Arbitrary File Write

2021-02-02 01:38:27

github

Django Directory Traversal via archive.extract

2021-03-18 20:29:49

debiancve

CVE-2021-3281

2021-02-02 07:15:14

nvd

CVE-2021-3281

2021-02-02 07:15:14

altlinux

Security fix for the ALT Linux 9 package python3-module-django version 2.2.19-alt1

2021-04-12 00:00:00

Security fix for the ALT Linux 10 package python3-module-django version 2.2.19-alt1

2021-02-24 00:00:00

redhat

(RHSA-2021:3490) Moderate: Red Hat OpenStack Platform 16.2 (python-django20) security update

2021-09-15 06:28:49

(RHSA-2021:5070) Moderate: Red Hat OpenStack Platform 16.1 (python-django20) security update

2021-12-09 19:50:28

(RHSA-2021:0781) Moderate: Red Hat Ansible Automation Platform 1.2.2 security and bug fix update

2021-03-09 15:08:01

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

JSON

Related for OSV:USN-4715-1