HackerOne Bug Bounty Disclosure: cve-potential-sql-injection-in-queryset-values-and-values-list-eyalgabay

Company Name:
Internet Bug Bounty

Company HackerOne URL:
https://hackerone.com/ibb

Submitted By:
eyalgabay

Link to Submitters Profile:
https://hackerone.com/eyalgabay

Report Title:
CVE-2024-42005: Potential SQL injection in QuerySet[.]values() and values_list()

Report Link:
https://hackerone.com/reports/2646493

Date Submitted:
24 August 2024

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee

Patreon

To keep up to date follow us on the below channels.

HackerOne Bug Bounty Disclosure: cve-potential-sql-injection-in-queryset-values-and-values-list-eyalgabay

New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog

[FOG] – Ransomware Victim: Prentke Romich Company

[MEDUSA] – Ransomware Victim: Compass Group

You may have missed

New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog

[FOG] – Ransomware Victim: Prentke Romich Company

[MEDUSA] – Ransomware Victim: Compass Group