Filtered by vendor Django-tastypie Subscriptions
Filtered by product Django-tastypie Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-16208 1 Django-tastypie 1 Django-tastypie 2026-07-19 5 Medium
A flaw has been found in django-tastypie up to 0.15.1. The affected element is the function CacheThrottle/CacheDBThrottle of the file tastypie/throttle.py. This manipulation causes race condition. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitability is described as difficult. The project was informed of the problem early through an issue report but has not responded yet.
CVE-2026-16207 1 Django-tastypie 1 Django-tastypie 2026-07-19 3.7 Low
A vulnerability was detected in django-tastypie up to 0.15.1. Impacted is the function ApiKeyAuthentication of the file tastypie/authentication.py. The manipulation results in use of get request method with sensitive query strings. The attack can be launched remotely. This attack is characterized by high complexity. The exploitability is considered difficult. The project was informed of the problem early through an issue report but has not responded yet.