9 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-15225
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - django-filter is a generic system for filtering Django QuerySets based on user selections. In django- filter before version 2.4.0, automatically generated...
Fedora: Security Advisory for python-django-filter (FEDORA-2023-4dee6d0a76)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 38 : python-django-filter (2023-4dee6d0a76)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-4dee6d0a76 advisory. New upstream version Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for th...
Fedora: Security Advisory for python-django-filter (FEDORA-2021-1acbee2459)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for python-django-filter (FEDORA-2021-f213fea441)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
DEBIAN-CVE-2020-15225
django-filter is a generic system for filtering Django QuerySets based on user selections. In django-filter before version 2.4.0, automatically generated NumberFilter instances, whose value was later converted to an integer, were subject to potential DoS from maliciously input using exponential...
CVE-2020-15225
django-filter is a generic system for filtering Django QuerySets based on user selections. In django-filter before version 2.4.0, automatically generated NumberFilter instances, whose value was later converted to an integer, were subject to potential DoS from maliciously input using exponential...
CVE-2020-15225
CVE-2020-15225 affects django-filter prior to 2.4.0, where automatically generated NumberFilter fields could be exploited via input using exponential formats with large exponents, enabling DoS. The fix in 2.4.0+ adds a MaxValueValidator with default limit_value 1e50 on the NumberFilter form field...
11x-wagtail-blog (>=0.0.0 <=0.2.0), 2u-enterprise-data (=10.22.1) +1319 more potentially affected by CVE-2020-15225 via django-filter (>=0.9.2 <=2.3.0)
django-filter PYPI version =0.9.2, =0.0.0, =0.0.1, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.7, =2025.1.0, =3.0.0.dev0, =4.0.0.dev9 and more Source cves: CVE-2020-15225 Source advisory: OSV:GHSA-X7GM-RFGV-W973...