1 results (0.002 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2019-13177
https://notcve.org/view.php?id=CVE-2019-13177
02 Jul 2019 — verification.py in django-rest-registration (aka Django REST Registration library) before 0.5.0 relies on a static string for signatures (i.e., the Django Signing API is misused), which allows remote attackers to spoof the verification process. This occurs because incorrect code refactoring led to calling a security-critical function with an incorrect argument. El archivo verification.py en django-rest-registration (también conocida como biblioteca de registro REST de Django) anterior a la versión 0.5.0 con... • https://github.com/apragacz/django-rest-registration/releases/tag/0.5.0 • CWE-347: Improper Verification of Cryptographic Signature •