Scan Installed Dependencies

pyraider go will automatically detect the installed dependencies and finds known security vulnerabilities.

Note: If you are running this command the first time, the vulnerability database will be downloaded from the source. It may take a few minutes to download.

Scan currently installed dependencies vulnerabilities.

pyraider go

You should get a result like this.

  _____       _____       _     _
 |  __ \     |  __ \     (_)   | |
 | |__) |   _| |__) |__ _ _  __| | ___ _ __
 |  ___/ | | |  _  // _` | |/ _` |/ _ \ '__|
 | |   | |_| | | \ \ (_| | | (_| |  __/ |
 |_|    \__, |_|  \_\__,_|_|\__,_|\___|_|
         __/ |
        |___/

by RaiderSource version 1.0.3

Started Scanning .....

+-----------------+------------------------------------------------------------+
|     Package     |                           django                           |
+-----------------+------------------------------------------------------------+
|    Severity     |                            HIGH                            |
+-----------------+------------------------------------------------------------+
|       CWE       |                             89                             |
+-----------------+------------------------------------------------------------+
|       CVE       |                       CVE-2020-9402                        |
+-----------------+------------------------------------------------------------+
| Current version |                          1.11.13                           |
+-----------------+------------------------------------------------------------+
|    Update To    |                           3.1a1                            |
+-----------------+------------------------------------------------------------+
|   Description   | Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 bef |
|                 | ore 3.0.4 allows SQL Injection if untrusted data is used a |
|                 | s a tolerance parameter in GIS functions and aggregates on |
|                 |  Oracle. By passing a suitably crafted tolerance to GIS fu |
|                 | nctions and aggregates on Oracle, it was possible to break |
|                 |             escaping and inject malicious SQL.             |
+-----------------+------------------------------------------------------------+
|     Resolve     |                 pip install django==3.1a1                  |
+-----------------+------------------------------------------------------------+
|    More Info    |       https://nvd.nist.gov/vuln/detail/CVE-2020-9402       |
+-----------------+------------------------------------------------------------+

Scan currently installed dependencies vulnerabilities.#

Scan currently installed dependencies vulnerabilities.