GHSA-q7q2-qf2q-rw3w

• CVE-2014-1418
• PYSEC-2014-19

• 7.4 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
• 9.1 (Critical) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator

{
    "nvd_published_at": "2014-05-16T15:55:00Z",
    "cwe_ids": [
        "CWE-349"
    ],
    "severity": "CRITICAL",
    "github_reviewed": true,
    "github_reviewed_at": "2023-08-16T22:54:50Z"
}

• https://nvd.nist.gov/vuln/detail/CVE-2014-1418
• https://github.com/django/django/commit/1abcf3a808b35abae5d425ed4d44cb6e886dc769
• https://github.com/django/django/commit/28e23306aa53bbbb8fb87db85f99d970b051026c
• https://github.com/django/django/commit/4001ec8698f577b973c5a540801d8a0bbea1205b
• https://github.com/django/django
• https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-19.yaml
• https://www.djangoproject.com/weblog/2014/may/14/security-releases-issued
• http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
• http://ubuntu.com/usn/usn-2212-1
• http://www.debian.org/security/2014/dsa-2934
• http://www.openwall.com/lists/oss-security/2014/05/14/10
• http://www.openwall.com/lists/oss-security/2014/05/15/3