Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/10/09 10:21 a.m.7 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Django-4.2.20-py3-none-any.whl CVE-2025-48432

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Django-4.2.20-py3-none-any.whl CVE-2025-48432. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-48432 DESCRIPTION: An issue was discovered in Django 5.2 before...

5.3CVSS7.3AI score0.006EPSS
Exploits0Affected Software1
Veracode
Veracode
added 2025/06/09 7:9 a.m.6 views

Log Injection

Django is vulnerable to log injection. The vulnerability is due to unescaped user input in request.path during internal HTTP response logging, allowing attackers to manipulate logs, forge entries, or hide malicious activity...

5.3CVSS4.5AI score0.006EPSS
Exploits0References11Affected Software2
OpenVAS
OpenVAS
added 2025/06/05 12:0 a.m.2 views

Django 4.x < 4.2.22, 5.0.x < 5.1.10, 5.2.x < 5.2.2 Log Injection Vulnerability - Windows

Django is prone to a log injection vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if...

5.3CVSS7.8AI score0.006EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/06/05 12:0 a.m.3 views

Django 4.x < 4.2.22, 5.0.x < 5.1.10, 5.2.x < 5.2.2 Log Injection Vulnerability - Linux

Django is prone to a log injection vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if...

5.3CVSS7.8AI score0.006EPSS
Exploits0References1
Rows per page
Query Builder