21 matches found
Mageia: Security Advisory (MGASA-2014-0196)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: SmartCloud Provisioning - Django vulnerabilities reported in April 2014 X-Force Report
Summary SmartCloud Provisioning - Django vulnerabilities reported in April 2014 X-Force Report CVE-2014-0473, CVE-2014-0474,CVE-2014-0472 Vulnerability Details CVE-ID: CVE-2014-0473 DESCRIPTION: Django is vulnerable to cross-site request forgery, caused by an error when handling caching of...
Gentoo Security Advisory GLSA 201406-26
Gentoo Linux Local Security Checks GLSA 201406-26 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : python-django (openSUSE-SU-2014:1132-1)
Python Django was updated to fix security issues and bugs. Update to version 1.4.15 on openSUSE 12.3 : + Prevented reverse from generating URLs pointing to other hosts to prevent phishing attacks bnc893087, CVE-2014-0480 + Removed On algorithm when uploading duplicate file names to fix file uploa...
GLSA-201406-26 : Django: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201406-26 Django: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Django. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could execute code with the privileges ...
[SECURITY] [DSA 2934-1] python-django security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2934-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 19, 2014 http://www.debian.org/security/faq -...
Debian DSA-2934-1 : python-django - security update
Several vulnerabilities were discovered in Django, a high-level Python web development framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-0472 Benjamin Bach discovered that Django incorrectly handled dotted Python paths when using the revers...
[SECURITY] [DSA 2934-1] python-django security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2934-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 19, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2934-1] python-django security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2934-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 19, 2014 http://www.debian.org/security/faq -...
DSA-2934-1 python-django - security update
Bulletin has no description...
Debian Security Advisory DSA 2934-1 (python-django - security update)
Several vulnerabilities were discovered in Django, a high-level Python web development framework. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-0472 Benjamin Bach discovered that Django incorrectly handled dotted Python paths when using the reverse U...
Debian: Security Advisory (DSA-2934-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2169-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for python-django USN-2169-2
Check for the Version of python-django OpenVAS Vulnerability Test $Id: gbubuntuUSN21692.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for python-django USN-2169-2 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is...
Ubuntu Update for python-django USN-2169-1
Check for the Version of python-django OpenVAS Vulnerability Test $Id: gbubuntuUSN21691.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for python-django USN-2169-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is...
DEBIAN-CVE-2014-0472
The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."...
CVE-2014-0472
The CVE-2014-0472 entry affects Django’s reverse URL resolver (django.core.urlresolvers.reverse). The vulnerability arises from handling of dotted Python paths, enabling a remote attacker to import and execute arbitrary Python modules via a view that constructs URLs from user input. Affected bran...
CVE-2014-0472
The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."...
USN-2169-2: Django regression
USN-2169-1 fixed vulnerabilities in Django. The upstream security patch for CVE-2014-0472 introduced a regression for certain applications. This update fixes the problem. Original advisory details: Benjamin Bach discovered that Django incorrectly handled dotted Python paths when using the reverse...
Ubuntu 14.04 LTS : Django regression (USN-2169-2)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2169-2 advisory. USN-2169-1 fixed vulnerabilities in Django. The upstream security patch for CVE-2014-0472 introduced a regression for certain applications. This update fixes the...