Search for packages
| purl | pkg:alpm/archlinux/python-django@3.0.4-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-x5yz-7qtf-aaar | Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possible to break escaping and inject malicious SQL. |
BIT-2020-9402
BIT-django-2020-9402 CVE-2020-9402 GHSA-3gh2-xw74-jmcw PYSEC-2020-36 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:49.798235+00:00 | Arch Linux Importer | Fixing | VCID-x5yz-7qtf-aaar | https://security.archlinux.org/AVG-1111 | 36.0.0 |
| 2024-10-12T00:59:57.314550+00:00 | Arch Linux Importer | Fixing | VCID-x5yz-7qtf-aaar | https://security.archlinux.org/AVG-1111 | 34.0.2 |
| 2024-09-18T02:02:10.748568+00:00 | Arch Linux Importer | Fixing | VCID-x5yz-7qtf-aaar | https://security.archlinux.org/AVG-1111 | 34.0.1 |
| 2024-04-23T19:47:34.107009+00:00 | Arch Linux Importer | Fixing | VCID-x5yz-7qtf-aaar | https://security.archlinux.org/AVG-1111 | 34.0.0rc4 |
| 2024-01-03T22:28:13.151227+00:00 | Arch Linux Importer | Fixing | VCID-x5yz-7qtf-aaar | https://security.archlinux.org/AVG-1111 | 34.0.0rc1 |