Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2021-35042

Published: 02/07/2021 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 670
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Djangoproject

Vulnerability Summary

Django 3.1.x prior to 3.1.13 and 3.2.x prior to 3.2.5 allows QuerySet.order_by SQL injection if order_by is untrusted input from a client of a web application.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

djangoproject django

fedoraproject fedora 34

Vendor Advisories

Red Hat: CVE-2021-35042
A flaw was found in django Unsanitized user input passed to ``QuerySetorder_by()`` could bypass intended column reference validation in path marked for deprecation resulting in a potential SQL injection even if a deprecation warning is emitted The highest threat from this vulnerability is to data confidentiality and integrity as well as system a ...
Arch Linux Issues:
A security issue has been found in Django before version 325 Unsanitized user input passed to QuerySetorder_by() could bypass intended column reference validation in path marked for deprecation resulting in a potential SQL injection even if a deprecation warning is emitted As a mitigation the strict column reference validation was restored for ...

Mailing Lists

Full Disclosure: Django: CVE-2021-35042: Potential SQL injection via unsanitized QuerySet.order_by() input
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> Django: CVE-2021-35042: Potential SQL injection via unsanitized QuerySetorder_by() input <!--X-Subject-Header-End--> <!--X-He ...

Github Repositories

https://github.com/H3rmesk1t/Django-SQL-Inject-Env

Django SQL Injection Vulnerability Environment.

Django SQL Inject Env Django SQL Injection Vulnerability Environment CVE-2020-7471 CVE-2021-35042 CVE-2022-28346

https://github.com/LUUANHDUC/CVE-2021-35042

Django SQL injection vulnerability

CVE-2021-35042: Django SQL injection vulnerability I Tổng quan Django là một Web Application Framework mã nguồn mở, được viết bằng python được xây dựng theo mô hình MVC ( Model - View - Controller) Ban đầu nó được xây dựng để quản lý các trang web nội dung tin tức thuộc sở

https://github.com/YouGina/CVE-2021-35042

SQL injection via unsanitized QuerySet.order_by() input

CVE-2021-35042 SQL injection via unsanitized QuerySetorder_by() input Setup: Run /setupsh for initial setup Open the docker image to initiate the database: docker exec -it {container_id} /bin/bash And run the following commands: python managepy makemigrations cve202135042 python managepy migrate Start the instances using: docker-comp

https://github.com/MinxuanDeng/CS5331_project

How to setup environment setup db docker run -d -p 50000:5432 -e POSTGRES_PASSWORD=qwe123QWE -e POSTGRES_DB=db postgres:141 execute migration python managepy makemigrations cve python managepy migrate setup service python managepy runserver Issue 1: Repro

https://github.com/r4vi/CVE-2021-35042

CVE-2021-35042 Django SQL injection bug Question: explore how exploitable is it? Answer: I'm terrified Install poetry install poetry run /managepy migrate poetry run /managepy loaddata dummydatajson Interactive Demo poetry run /managepy runserver Ordering by random fields go to localhost:8000/?order_by=%22core_things_tags%22%22things_id%22 note that the ?ord

https://github.com/mieczyk/vilya-blog

This repository contains code samples and POC projects related to blog posts on vilyapl Flask application vulnerable to CSRF Proof of concept for the CVE-2021-35042 vulnerability (SQL injection in Django)

https://github.com/mrlihd/CVE-2021-35042

Reproduce CVE-2021-35042

CVE-2021-35042 SQL injection via QuerySetorder_by() untrusted input Setup: Start the instances using: docker-compose up Now open the following URL to load sample data: localhost:8000/vul_app/setup Then go to the vulnerable page at: localhost:8000/vul_app/ Exploit the parameter at: localhost:8000/vul_app/?order_by=name

https://github.com/WynSon/CVE-2021-35042

A basic analysis about CVE-2021-35942. SQL injection in Django.

CVE-2021-35042: Django SQL injection vulnerability I Tổng quan Django là một Web Application Framework mã nguồn mở, được viết bằng python được xây dựng theo mô hình MVC ( Model - View - Controller) Ban đầu nó được xây dựng để quản lý các trang web nội dung tin tức thuộc sở

https://github.com/Power7089/CyberSpace

炼石计划@渗透攻防宇宙,本星球我们不仅专注渗透攻防测试中的点点滴滴,又横向扩展学习代码基础与PHP/Java代码审计基础。两者相辅相成,只为更好的成长。

嗨,朋友你好,欢迎来到【炼石计划@渗透攻防宇宙】,这是继Java代码审计,PHP代码审计的又一力作。 本星球我们不仅专注渗透攻防测试中的点点滴滴,又横向扩展学习代码基础与PHP/Java代码审计基础。 两者相辅相成,配合九大学习内容,只为更好的成长。 在这里我们是有节奏成体系分

References

CWE-89https://docs.djangoproject.com/en/3.2/releases/security/https://www.openwall.com/lists/oss-security/2021/07/02/2https://www.djangoproject.com/weblog/2021/jul/01/security-releases/https://security.netapp.com/advisory/ntap-20210805-0008/https://groups.google.com/forum/#%21forum/django-announcehttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SS6NJTBYWOX6J7G4U3LUOILARJKWPQ5Y/https://nvd.nist.govhttps://github.com/H3rmesk1t/Django-SQL-Inject-Envhttps://access.redhat.com/security/cve/cve-2021-35042
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook