Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.70 views

openSUSE Security Update : python3-Django (openSUSE-2018-318)

This update for python3-Django to version 1.18.18 fixes multiple issues. Security issues fixed : - CVE-2018-7537: Fixed catastrophic backtracking in django.utils.text.Truncator. bsc1083305 - CVE-2018-7536: Fixed catastrophic backtracking in urlize and urlizetrunc template filters bsc1083304. -...

9.8CVSS6.1AI score0.23566EPSS
Exploits9References22
ALT Linux
ALT Linux
added 2016/10/24 12:0 a.m.29 views

Security fix for the ALT Linux 9 package python3-module-django version 1.8.15-alt1

Oct. 24, 2016 Alexey Shabalin 1.8.15-alt1 - 1.8.15 - fixed CVE-2016-2512,CVE-2016-2513,CVE-2016-6186,CVE-2016-7401...

5CVSS6.2AI score0.0613EPSS
Exploits7
ALT Linux
ALT Linux
added 2016/10/24 12:0 a.m.48 views

Security fix for the ALT Linux 10 package python3-module-django version 1.8.15-alt1

Oct. 24, 2016 Alexey Shabalin 1.8.15-alt1 - 1.8.15 - fixed CVE-2016-2512,CVE-2016-2513,CVE-2016-6186,CVE-2016-7401...

5CVSS6.2AI score0.0613EPSS
Exploits7
OSV
OSV
added 2016/04/08 3:59 p.m.6 views

CVE-2016-2512

The utils.http.issafeurl function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting XSS attacks via a URL containing basic authentication, as demonstrated by...

7.4CVSS7.1AI score
Exploits0References13
CVE
CVE
added 2016/04/08 3:0 p.m.130 views

CVE-2016-2512

CVE-2016-2512 affects Django’s utils.http.is_safe_url, allowing remote redirection to attacker-controlled sites and potentially phishing or XSS via a URL containing basic authentication. Affected Django versions: before 1.8.10 and 1.9.x before 1.9.3. The related GHSA entry confirms an exploit pat...

7.4CVSS7AI score0.04035EPSS
Exploits0References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/04/08 12:0 a.m.37 views

Debian DSA-3544-1 : python-django - security update

Several vulnerabilities were discovered in Django, a high-level Python web development framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-2512 Mark Striemer discovered that some user-supplied redirect URLs containing basic authentication...

7.4CVSS6AI score0.04035EPSS
Exploits0References8
Debian
Debian
added 2016/04/07 4:33 p.m.27 views

[SECURITY] [DSA 3544-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3544-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 07, 2016 https://www.debian.org/security/faq -...

4.3CVSS2AI score0.04035EPSS
Exploits0
Debian
Debian
added 2016/04/07 4:33 p.m.48 views

[SECURITY] [DSA 3544-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3544-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 07, 2016 https://www.debian.org/security/faq -...

7.4CVSS7.1AI score0.04035EPSS
Exploits0
OSV
OSV
added 2016/04/07 12:0 a.m.42 views

DSA-3544-1 python-django - security update

Bulletin has no description...

7.4CVSS5.5AI score0.04035EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/03/24 1:10 a.m.29 views

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

7.4CVSS6.6AI score0.04035EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2016/03/24 1:10 a.m.33 views

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

7.4CVSS6.6AI score0.04035EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/18 12:0 a.m.26 views

Fedora Update for python-django FEDORA-2016-11183

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS5.8AI score0.04035EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/18 12:0 a.m.24 views

Fedora 23 : python-django-1.8.11-1.fc23 (2016-11183ea08d)

fix regression in 1.8.10 ---- update to 1.8.10, fixing CVE-2016-2512, CVE-2016-2513 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.4CVSS6.3AI score0.04035EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/03/08 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-2915-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS5.8AI score0.04035EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/08 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-2915-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS5.8AI score0.04035EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/03/08 12:0 a.m.34 views

Ubuntu 14.04 LTS : Django regression (USN-2915-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2915-2 advisory. USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem by...

7.4CVSS7.6AI score0.04035EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/03/08 12:0 a.m.30 views

Ubuntu 14.04 LTS : Django regression (USN-2915-3)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2915-3 advisory. USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem by...

7.4CVSS7.6AI score0.04035EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2016/03/07 7:19 p.m.57 views

USN-2915-3: Django regression

USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem by applying the complete upstream regression fix. Original advisory details: Mark Striemer discovered that Django incorrectly handled...

6.5AI score0.04035EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2016/03/07 7:18 p.m.52 views

USN-2915-2: Django regression

USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem by applying the complete upstream regression fix. Original advisory details: Mark Striemer discovered that Django incorrectly handled...

6.5AI score0.04035EPSS
Exploits0References1
Mageia
Mageia
added 2016/03/07 11:20 a.m.44 views

Updated python-django packages fix security vulnerability

Mark Striemer discovered that Django incorrectly handled user-supplied redirect URLs containing basic authentication credentials. A remote attacker could possibly use this issue to perform a cross-site scripting attack or a malicious redirect. CVE-2016-2512 Sjoerd Job Postmus discovered that Djan...

7.4CVSS1.6AI score0.04035EPSS
Exploits0References3
Rows per page
Query Builder