4 matches found
SUSE CVE-2026-1207
An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on RasterField only implemented on PostGIS allows remote attackers to inject SQL via the band index parameter. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluate...
CVE-2026-1207
An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on RasterField only implemented on PostGIS allows remote attackers to inject SQL via the band index parameter. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluate...
CVE-2026-1207
CVE-2026-1207 affects Django RasterField (PostGIS) through SQL injection via the band index parameter. Affected versions: 6.0 before 6.0.2, 5.2 before 5.2.11, 4.2 before 4.2.28. Remediation: upgrade to Django 6.0.2, 5.2.11, or 4.2.28+ (per Fedora/Debian advisories). Other details are documented a...
Linux Distros Unpatched Vulnerability : CVE-2026-1207
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on RasterField only implemented on PostGIS allows remote...