CVE-2014-0472

Django <1.4.11, <1.5.6, <1.6.3, <1.7 beta 2 - RCE

Title source: llm

Description

The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."

Exploits (1)

nomisec WORKING POC 7 stars

by christasa · poc

https://github.com/christasa/CVE-2014-0472

View Code ZIP pw:eip

References (7)

[Mailing List] http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0456.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0457.html

[Third Party Advisory] http://secunia.com/advisories/61281

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2169-1

[Vendor Advisory] https://www.djangoproject.com/weblog/2014/apr/21/security/

[Third Party Advisory] http://www.debian.org/security/2014/dsa-2934

Scores

EPSS 0.0689

EPSS Percentile 91.4%

Details

CWE

CWE-94

Status published

Products (27)

canonical/ubuntu_linux 10.04

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 12.10

canonical/ubuntu_linux 13.10

canonical/ubuntu_linux 14.04

djangoproject/django 1.4

djangoproject/django 1.4.1

djangoproject/django 1.4.2

djangoproject/django 1.4.3

djangoproject/django 1.4.4

... and 17 more

Published Apr 23, 2014

Tracked Since Feb 18, 2026