24 matches found
Security Bulletin: Denial of service, SQL injection, and other vulnerabilities might affect IBM Storage Defender – Resiliency Service
Summary IBM Storage Defender – Resiliency Service is vulnerable to denial of service, SQL injection, and others. The vulnerabilities have been addressed. CVE-2023-52425, CVE-2024-53908, CVE-2024-53907, CVE-2023-52426, CVE-2022-29162, CVE-2023-25809, CVE-2023-27561, CVE-2023-28642, CVE-2024-21626,...
[SECURITY] [DLA 4006-1] python-django security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4006-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 31, 2024 https://wiki.debian.org/LTS -...
Debian dla-4006 : python-django-doc - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4006 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4006-1 [email protected] https://www.debian.org/lts/security/...
python310-Django-5.1.4-1.1 on GA media (moderate)
python310-Django-5.1.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14568-1 Rating: moderate Cross-References: CVE-2024-53907 CVE-2024-53908 CVSS scores: CVE-2024-53907 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-53908 SUSE : 9.1...
openSUSE Security Advisory (SUSE-SU-2024:4285-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
python310-Django4-4.2.17-1.1 on GA media (moderate)
python310-Django4-4.2.17-1.1 on GA media Announcement ID: openSUSE-SU-2024:14565-1 Rating: moderate Cross-References: CVE-2024-53907 CVE-2024-53908 CVSS scores: CVE-2024-53907 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-53908 SUSE : 9.1...
Django 4.x < 4.2.17, 5.0.x < 5.0.10, 5.1.x < 5.1.4 Multiple Vulnerabilities - Windows
Django is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if descriptio...
Django 4.x < 4.2.17, 5.0.x < 5.0.10, 5.1.x < 5.1.4 Multiple Vulnerabilities - Linux
Django is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if descriptio...
aldryn-django (=4.2.10.0), alertwise (=1.0.0) +93 more potentially affected by CVE-2024-53907 via django (>=4.2.0 <=4.2.16)
django PYPI version =4.2.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =0.4.0, =4.16.2, =4.8.0, =8.0.0, =5.2.0, =5.2.2 - cpu-utilization-monitoring =0.1.3 and more Source cves: CVE-2024-53907 Source advisory: OSV:GHSA-8498-2H75-472J...
CVE-2024-53907
An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...
artd-customer (>=0.0.20 <=0.0.23), artd-location (>=0.0.13 <=0.0.21) +62 more potentially affected by CVE-2024-53907 via django (>=5.0.0 <=5.0.1)
django PYPI version =5.0.0, =0.0.20, =0.0.13, =0.0.19, =0.0.34, =0.0.50, =0.0.5, =0.0.11, =1.0.3, =1.0.0, =6.0.0, =2.8.1, =0.3.0, =24.1.1, =24.2.0 and more Source cves: CVE-2024-53907 Source advisory: OSV:PYSEC-2024-156...
aldryn-django (=4.2.10.0), alertwise (=1.0.0) +93 more potentially affected by CVE-2024-53907 via django (>=4.2.0 <=4.2.16)
django PYPI version =4.2.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =0.4.0, =4.16.2, =4.8.0, =8.0.0, =5.2.0, =5.2.2 - cpu-utilization-monitoring =0.1.3 and more Source cves: CVE-2024-53907 Source advisory: OSV:PYSEC-2024-156...
CVE-2024-53907 vulnerabilities
Vulnerabilities for packages: awx, py3-django...
CVE-2024-53907 vulnerabilities
Vulnerabilities for packages: py3-django...
CVE-2024-53907
creationtimestamp| type| source ---|---|--- 2024-12-06 11:48:34+00:00| seen| https://infosec.exchange/users/cve/statuses/113605719732617942 2024-12-06 13:56:45+00:00| seen| https://t.me/cvedetector/12205...
CVE-2024-53907
An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...
CVE-2024-53907
An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...
CVE-2024-53907
The CVE concerns Django (versions 5.1 <= 5.1.3, 5.0 <= 5.0.9, and 4.2
Ubuntu: Security Advisory (USN-7136-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7136-2 python-django vulnerability
USN-7136-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: jiangniao discovered that Django incorrectly handled the API to strip tags. A remote attacker could possibly use this issue to cause Djan...