Lucene search
K

21203 matches found

Github Security Blog
Github Security Blog
added 2025/05/08 6:30 a.m.9 views

Django has a denial-of-service possibility in strip_tags()

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS5.2AI score0.13969EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/05/08 6:30 a.m.3 views

GHSA-8J24-CJRQ-GR2M Django has a denial-of-service possibility in strip_tags()

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.8AI score0.13969EPSS
Exploits0References8
NVD
NVD
added 2025/05/08 4:17 a.m.20 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS0.13969EPSS
Exploits0References4
PyPA
PyPA
added 2025/05/08 4:17 a.m.8 views

PYSEC-2025-37

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS7AI score0.13969EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/05/08 4:17 a.m.7 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.4AI score
Exploits0References4
OSV
OSV
added 2025/05/08 4:17 a.m.2 views

DEBIAN-CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.6AI score0.13969EPSS
Exploits0References1
OSV
OSV
added 2025/05/08 4:17 a.m.4 views

PYSEC-2025-37

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.8AI score0.13969EPSS
Exploits0References5
Snyk
Snyk
added 2025/05/08 3:42 a.m.4 views

Allocation of Resources Without Limits or Throttling

Overview Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the striptags function. An attacker can cause slow performance by...

6.9CVSS6.8AI score0.13969EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.13 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS0.13969EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/08 12:0 a.m.14 views

Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability - Windows

Django is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; ...

5.3CVSS6.6AI score0.13969EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/05/08 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-7501-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.13969EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/08 12:0 a.m.8 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS5.1AI score0.13969EPSS
Exploits0References3
CVE
CVE
added 2025/05/08 12:0 a.m.218 views

CVE-2025-32873

CVE-2025-32873 affects Django: vulnerable in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The issue is in django.utils.html.strip_tags(), which can be exploited to cause a denial-of-service (slow performance) when processing inputs containing large sequences of incomplete HTM...

5.3CVSS5.1AI score0.13969EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2025/05/08 12:0 a.m.15 views

Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability - Linux

Django is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; ...

5.3CVSS6.6AI score0.13969EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/05/08 12:0 a.m.6 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.6AI score0.13969EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/05/08 12:0 a.m.7 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS7.1AI score0.13969EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/05/08 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-7501-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.4AI score0.13969EPSS
Exploits0References2
Rapid7 Blog
Rapid7 Blog
added 2025/05/07 8:18 p.m.24 views

Multiple vulnerabilities in SonicWall SMA 100 series (FIXED)

Overview In April of 2025, Rapid7 discovered and disclosed three new vulnerabilities affecting SonicWall Secure Mobile Access “SMA” 100 series appliances SMA 200, 210, 400, 410, 500v. These vulnerabilities are tracked as CVE-2025-32819, CVE-2025-32820, and CVE-2025-32821. An attacker with access ...

8.8CVSS9.2AI score0.29415EPSS
Exploits1
Rapid7 Blog
Rapid7 Blog
added 2025/05/07 8:18 p.m.6 views

Multiple vulnerabilities in SonicWall SMA 100 series (FIXED)

Overview In April of 2025, Rapid7 discovered and disclosed three new vulnerabilities affecting SonicWall Secure Mobile Access “SMA” 100 series appliances SMA 200, 210, 400, 410, 500v. These vulnerabilities are tracked as CVE-2025-32819, CVE-2025-32820, and CVE-2025-32821. An attacker with access ...

8.8CVSS10AI score0.29415EPSS
Exploits1
Rockylinux
Rockylinux
added 2025/05/07 7:11 p.m.5 views

source-highlight bug fix update

An update is available for source-highlight. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This program, given a source file, produces a document with syntax...

7.3AI score
Exploits0
Rows per page
Query Builder