mirror of
https://github.com/nomi-sec/PoC-in-GitHub.git
synced 2025-01-15 20:32:21 +01:00
157 lines
No EOL
5.9 KiB
JSON
157 lines
No EOL
5.9 KiB
JSON
[
|
|
{
|
|
"id": 485285000,
|
|
"name": "CVE-2022-28346",
|
|
"full_name": "YouGina\/CVE-2022-28346",
|
|
"owner": {
|
|
"login": "YouGina",
|
|
"id": 5002624,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/5002624?v=4",
|
|
"html_url": "https:\/\/github.com\/YouGina",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/YouGina\/CVE-2022-28346",
|
|
"description": "SQL injection in QuerySet.annotate(), aggregate(), and extra()",
|
|
"fork": false,
|
|
"created_at": "2022-04-25T08:27:34Z",
|
|
"updated_at": "2023-07-18T07:41:07Z",
|
|
"pushed_at": "2022-04-25T11:18:12Z",
|
|
"stargazers_count": 1,
|
|
"watchers_count": 1,
|
|
"has_discussions": false,
|
|
"forks_count": 1,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [],
|
|
"visibility": "public",
|
|
"forks": 1,
|
|
"watchers": 1,
|
|
"score": 0,
|
|
"subscribers_count": 1
|
|
},
|
|
{
|
|
"id": 485828921,
|
|
"name": "CVE-2022-28346",
|
|
"full_name": "DeEpinGh0st\/CVE-2022-28346",
|
|
"owner": {
|
|
"login": "DeEpinGh0st",
|
|
"id": 34375573,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/34375573?v=4",
|
|
"html_url": "https:\/\/github.com\/DeEpinGh0st",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/DeEpinGh0st\/CVE-2022-28346",
|
|
"description": "Django QuerySet.annotate(), aggregate(), extra() SQL 注入",
|
|
"fork": false,
|
|
"created_at": "2022-04-26T14:47:56Z",
|
|
"updated_at": "2025-01-03T19:08:56Z",
|
|
"pushed_at": "2022-05-31T03:28:34Z",
|
|
"stargazers_count": 22,
|
|
"watchers_count": 22,
|
|
"has_discussions": false,
|
|
"forks_count": 5,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [],
|
|
"visibility": "public",
|
|
"forks": 5,
|
|
"watchers": 22,
|
|
"score": 0,
|
|
"subscribers_count": 3
|
|
},
|
|
{
|
|
"id": 492352752,
|
|
"name": "CVE-2022-28346",
|
|
"full_name": "ahsentekd\/CVE-2022-28346",
|
|
"owner": {
|
|
"login": "ahsentekd",
|
|
"id": 23294573,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/23294573?v=4",
|
|
"html_url": "https:\/\/github.com\/ahsentekd",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/ahsentekd\/CVE-2022-28346",
|
|
"description": "An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.",
|
|
"fork": false,
|
|
"created_at": "2022-05-15T00:24:19Z",
|
|
"updated_at": "2024-09-13T11:00:52Z",
|
|
"pushed_at": "2022-05-15T00:53:22Z",
|
|
"stargazers_count": 0,
|
|
"watchers_count": 0,
|
|
"has_discussions": false,
|
|
"forks_count": 0,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [],
|
|
"visibility": "public",
|
|
"forks": 0,
|
|
"watchers": 0,
|
|
"score": 0,
|
|
"subscribers_count": 1
|
|
},
|
|
{
|
|
"id": 609374925,
|
|
"name": "CVE-2022-28346",
|
|
"full_name": "vincentinttsh\/CVE-2022-28346",
|
|
"owner": {
|
|
"login": "vincentinttsh",
|
|
"id": 14941597,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/14941597?v=4",
|
|
"html_url": "https:\/\/github.com\/vincentinttsh",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/vincentinttsh\/CVE-2022-28346",
|
|
"description": "An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.",
|
|
"fork": false,
|
|
"created_at": "2023-03-04T01:43:58Z",
|
|
"updated_at": "2022-08-24T08:06:59Z",
|
|
"pushed_at": "2022-05-15T00:53:22Z",
|
|
"stargazers_count": 0,
|
|
"watchers_count": 0,
|
|
"has_discussions": false,
|
|
"forks_count": 0,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [],
|
|
"visibility": "public",
|
|
"forks": 0,
|
|
"watchers": 0,
|
|
"score": 0,
|
|
"subscribers_count": 1
|
|
},
|
|
{
|
|
"id": 745257468,
|
|
"name": "CVE-2022-28346",
|
|
"full_name": "kamal-marouane\/CVE-2022-28346",
|
|
"owner": {
|
|
"login": "kamal-marouane",
|
|
"id": 110986028,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/110986028?v=4",
|
|
"html_url": "https:\/\/github.com\/kamal-marouane",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/kamal-marouane\/CVE-2022-28346",
|
|
"description": "A flaw was found in the Django package, which leads to a SQL injection. This flaw allows an attacker using a crafted dictionary containing malicious SQL queries to compromise the database completely.",
|
|
"fork": false,
|
|
"created_at": "2024-01-19T00:15:59Z",
|
|
"updated_at": "2024-01-20T05:30:50Z",
|
|
"pushed_at": "2024-01-19T04:00:05Z",
|
|
"stargazers_count": 1,
|
|
"watchers_count": 1,
|
|
"has_discussions": false,
|
|
"forks_count": 0,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [],
|
|
"visibility": "public",
|
|
"forks": 0,
|
|
"watchers": 1,
|
|
"score": 0,
|
|
"subscribers_count": 1
|
|
}
|
|
] |