CVE-2021-30459
- Source
- https://cve.org/CVERecord?id=CVE-2021-30459
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-30459.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-30459
- Aliases
- Downstream
- Related
- Published
- 2021-04-14T18:15:14.877Z
- Modified
- 2026-04-10T04:32:16.082049Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A SQL Injection issue in the SQL Panel in Jazzband Django Debug Toolbar before 1.11.1, 2.x before 2.2.1, and 3.x before 3.2.1 allows attackers to execute SQL statements by changing the raw_sql input field of the SQL explain, analyze, or select form.
- References
Affected packages
Git / github.com/jazzband/django-debug-toolbar
Affected ranges
- Type
- GIT
- Repo
- https://github.com/jazzband/django-debug-toolbar
- Events
-
IntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixed
- Database specific
{ "versions": [ { "introduced": "0.10.0" }, { "fixed": "1.11.1" }, { "introduced": "2.0.0" }, { "fixed": "2.2.1" }, { "introduced": "3.0.0" }, { "fixed": "3.2.1" } ] }