HackerOne Bug Bounty Disclosure: cve-potential-sql-injection-in-queryset-values-and-values-list-eyalgabay

August 24, 2024

Company Name:
Internet Bug Bounty

Company HackerOne URL:
https://hackerone.com/ibb

Submitted By:
eyalgabay

Link to Submitters Profile:
https://hackerone.com/eyalgabay

Report Title:
CVE-2024-42005: Potential SQL injection in QuerySet[.]values() and values_list()

Report Link:
https://hackerone.com/reports/2646493

Date Submitted:
24 August 2024

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

You may have missed

hackerone

HackerOne Bug Bounty Disclosure: std-process-command-batch-files-argument-escaping-could-be-bypassed-with-trailing-whitespace-or-periods–xpl-r-r

November 22, 2024
image

[LOCKBIT3] – Ransomware Victim: madison-home[.]com

November 22, 2024
image

[CHORT] – Ransomware Victim: sheboyganwi[.]gov

November 22, 2024
image

[QILIN] – Ransomware Victim: Zimmerman & Frachtman PA Law Firm

November 22, 2024
image

[QILIN] – Ransomware Victim: Calvert Home Mortgage Investment

November 22, 2024