Djangoproject DjangoDjango CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42005
pip/DjangoDjango CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42005
pip/DjangoDjango CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42005
ubuntu/python-djangoDjango CVE-2024-24680: Potential denial-of-service in intcomma template filter
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoDjango: CVE-2023-46695: Potential denial of service vulnerability in UsernameField on Windows
ubuntu/python-djangoDjango: CVE-2023-43665: Denial-of-service possibility in django.utils.text.Truncator
ubuntu/python-djangoDjango: CVE-2023-41164: Potential denial of service vulnerability in django.utils.encoding.uri_to_iri()
ubuntu/python-djangoIn Django 3.2 before 3.2.20, 4 before 4.1.10, and 4.2 before 4.2.3, EmailValidator and URLValidator …
redhat/python-djangoA memory exhaustion flaw was found in the python-django package. This issue occurs when passing cert…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/python-djangoThe parsed values of Accept-Language headers are cached in order to avoid repetitive parsing. This l…
pip/djangoIn Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were sub…
Djangoproject DjangoAn issue was discovered in the HTTP FileResponse class in Django 3.2 before 3.2.15 and 4.0 before 4.…
Djangoproject DjangoPassing certain inputs to multipart forms could result in an infinite loop when parsing files.
Djangoproject DjangoAn issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAt…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoHTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL p…
Djangoproject DjangoPath Traversal, Malicious File Upload
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/python-djangoIf passed certain inputs, :func:django.utils.encoding.uri_to_iri could lead to significant memory us…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoDjango before 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3, when settings.DEBU…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoThe (1) contrib.sessions.backends.base.SessionBase.flush and (2) cache_db.SessionStore.flush functio…
Djangoproject Djangocontrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4…
Djangoproject DjangoThe session backends in Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x bef…
Djangoproject Djangovalidators.URLValidator in Django 1.8.x before 1.8.3 allows remote attackers to cause a denial of se…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoThe session.flush function in the cached_db backend in Django 1.8.x before 1.8.2 does not properly f…
Djangoproject DjangoThe utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x befo…
Djangoproject DjangoModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_hidden_init…
Djangoproject DjangoThe django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoThe default configuration for the file upload handling system in Django before 1.4.14, 1.5.x before …
Djangoproject DjangoDjango 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Djangoproject DjangoThe authentication framework (django.contrib.auth) in Django 1.4.x before 1.4.8, 1.5.x before 1.5.4,…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.