Skip to main content

Django Rest Registration

1 CVEs product

Monthly

CVE-2019-13177 PyPI CRITICAL POC PATCH Act Now

verification.py in django-rest-registration (aka Django REST Registration library) before 0.5.0 relies on a static string for signatures (i.e., the Django Signing API is misused), which allows remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Jwt Attack Python Information Disclosure Django Rest Registration
NVD GitHub
CVSS 3.0
9.8
EPSS
1.6%
EPSS 2% CVSS 9.8
CRITICAL POC PATCH Act Now

verification.py in django-rest-registration (aka Django REST Registration library) before 0.5.0 relies on a static string for signatures (i.e., the Django Signing API is misused), which allows remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Jwt Attack Python Information Disclosure +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy