Astra Linux - уязвимость в python-django

A issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 before 5.0.2. The intcomma template filter was susceptible to a denial-of-service attack when used with very long strings...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002185)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002185 advisory. The tcprcvstateprocess function in net/ipv4/tcpinput.c in the Linux kernel before 3.2.24 allows remote attackers to cause a denial of service kernel resource...

CVE-2025-68551

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vikas Ratudi VPSUForm v-form allows Retrieve Embedded Sensitive Data.This issue affects VPSUForm: from n/a through = 3.2.24...

CVE-2025-68551

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vikas Ratudi VPSUForm v-form allows Retrieve Embedded Sensitive Data.This issue affects VPSUForm: from n/a through = 3.2.24...

CVE-2025-68551

Technical details about CVE-2025-68551 (VPSUForm v-form data exposure) are not present in the provided documents. No product/version/root cause/impact/fix information is available here; monitor for updates and vendor advisories.

CVE-2025-68551 WordPress VPSUForm plugin <= 3.2.24 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vikas Ratudi VPSUForm v-form allows Retrieve Embedded Sensitive Data.This issue affects VPSUForm: from n/a through = 3.2.24...

WordPress plugin VPSUForm 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

PT-2025-52738

Name of the Vulnerable Software and Affected Versions Vikas Ratudi VPSUForm versions through 3.2.24 Description A flaw exists in Vikas Ratudi VPSUForm that allows the retrieval of embedded sensitive data, potentially exposing sensitive system information to unauthorized access. The issue affects...

CVE-2023-34005

Cross-Site Request Forgery CSRF vulnerability in Etoile Web Design Front End Users plugin = 3.2.24 versions...

WordPress plugin Photo Gallery, Images, Slider in Rbs Image Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

admin-tool-button (>=1.0.1a0 <=1.0.5a0), aedttest (=0.0.2) +130 more potentially affected by CVE-2024-27351 via django (>=3.2.0 <=3.2.24)

django PYPI version =3.2.0, =1.0.1a0, =2.0.0, =0.0.1, =1.0.6, =3.2.17.0, =6.2.0, =0.2.0, =0.1.0, =21.1.1, =21.1.0, =22.0.0.dev13, =22.0.0.dev14 and more Source cves: CVE-2024-27351 Source advisory: OSV:PYSEC-2024-47...

Django < 3.2.24, 4.x < 4.2.10, 5.x < 5.0.2 DoS Vulnerability - Windows

Django is prone to a denial of service DoS vulnerability in the intcomma template filter. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

DEBIAN-CVE-2024-24680

An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 before 5.0.2. The intcomma template filter was subject to a potential denial-of-service attack when used with very long strings...

Django Security Vulnerabilities

Django is the Django Foundation's set of open source Web application framework based on the Python language . The framework includes an object-oriented mapper, view system, template system, and more. Django has a security vulnerability. An attacker exploited the vulnerability to cause a denial of...

CVE-2023-34005

Cross-Site Request Forgery CSRF vulnerability in Etoile Web Design Front End Users plugin = 3.2.24 versions...

CVE-2023-34005 WordPress Front End Users Plugin <= 3.2.24 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Etoile Web Design Front End Users plugin = 3.2.24 versions...

WordPress Plugin Front End Users 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

SUSE CVE-2014-2488

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality via unknown vectors related to Core...

UBUNTU-CVE-2014-4261

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.14 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than...

Linux Kernel 'tcp_rcv_state_process()'函数拒绝服务漏洞

BUGTRAQ ID: 65654 CVECAN ID: CVE-2012-6638 Linux Kernel是Linux操作系统的内核。 Linux kernel 3.2.24之前版本net/ipv4/tcpinput.c内的tcprcvstateprocess函数在处理大量的SYN+FIN TCP数据包时，存在越界访问错误，远程攻击者可利用此漏洞造成拒绝服务。 0 Linux kernel 3.2.24 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.kernel.org/...