PoC-in-GitHub/2022/CVE-2022-28346.json

[
    {
        "id": 485285000,
        "name": "CVE-2022-28346",
        "full_name": "YouGina\/CVE-2022-28346",
        "owner": {
            "login": "YouGina",
            "id": 5002624,
            "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/5002624?v=4",
            "html_url": "https:\/\/github.com\/YouGina"
        },
        "html_url": "https:\/\/github.com\/YouGina\/CVE-2022-28346",
        "description": "SQL injection in QuerySet.annotate(), aggregate(), and extra()",
        "fork": false,
        "created_at": "2022-04-25T08:27:34Z",
        "updated_at": "2023-07-18T07:41:07Z",
        "pushed_at": "2022-04-25T11:18:12Z",
        "stargazers_count": 1,
        "watchers_count": 1,
        "has_discussions": false,
        "forks_count": 1,
        "allow_forking": true,
        "is_template": false,
        "web_commit_signoff_required": false,
        "topics": [],
        "visibility": "public",
        "forks": 1,
        "watchers": 1,
        "score": 0,
        "subscribers_count": 1
    },
    {
        "id": 485828921,
        "name": "CVE-2022-28346",
        "full_name": "DeEpinGh0st\/CVE-2022-28346",
        "owner": {
            "login": "DeEpinGh0st",
            "id": 34375573,
            "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/34375573?v=4",
            "html_url": "https:\/\/github.com\/DeEpinGh0st"
        },
        "html_url": "https:\/\/github.com\/DeEpinGh0st\/CVE-2022-28346",
        "description": "Django QuerySet.annotate(), aggregate(), extra() SQL 注入",
        "fork": false,
        "created_at": "2022-04-26T14:47:56Z",
        "updated_at": "2023-03-28T13:28:08Z",
        "pushed_at": "2022-05-31T03:28:34Z",
        "stargazers_count": 23,
        "watchers_count": 23,
        "has_discussions": false,
        "forks_count": 5,
        "allow_forking": true,
        "is_template": false,
        "web_commit_signoff_required": false,
        "topics": [],
        "visibility": "public",
        "forks": 5,
        "watchers": 23,
        "score": 0,
        "subscribers_count": 3
    },
    {
        "id": 609374925,
        "name": "CVE-2022-28346",
        "full_name": "vincentinttsh\/CVE-2022-28346",
        "owner": {
            "login": "vincentinttsh",
            "id": 14941597,
            "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/14941597?v=4",
            "html_url": "https:\/\/github.com\/vincentinttsh"
        },
        "html_url": "https:\/\/github.com\/vincentinttsh\/CVE-2022-28346",
        "description": "An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.",
        "fork": false,
        "created_at": "2023-03-04T01:43:58Z",
        "updated_at": "2022-08-24T08:06:59Z",
        "pushed_at": "2022-05-15T00:53:22Z",
        "stargazers_count": 0,
        "watchers_count": 0,
        "has_discussions": false,
        "forks_count": 0,
        "allow_forking": true,
        "is_template": false,
        "web_commit_signoff_required": false,
        "topics": [],
        "visibility": "public",
        "forks": 0,
        "watchers": 0,
        "score": 0,
        "subscribers_count": 1
    }
]