Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2025-13952

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.13969EPSS
Exploits0References7
Snyk
Snyk
added 2025/08/01 6:30 a.m.5 views

Cross-site Scripting (XSS)

Overview markdown2 is a fast and complete Python implementation of Markdown. Affected versions of this package are vulnerable to Cross-site Scripting XSS in safemode due to improper handling of incomplete HTML tags. The encodeincompletetags function fails to properly check for auto links, allowin...

6.1CVSS5.7AI score
Exploits0References3
OSV
OSV
added 2025/06/18 2:40 p.m.4 views

BIT-DJANGO-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.9AI score0.13969EPSS
Exploits0References5
OSV
OSV
added 2025/05/08 4:17 a.m.5 views

PYSEC-2025-37

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS6.8AI score0.13969EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.13 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS0.13969EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/08 12:0 a.m.8 views

CVE-2025-32873

An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.striptags function is vulnerable to a potential denial-of-service slow performance when processing inputs containing large sequences of incomplete HTML tags. The template filter...

5.3CVSS5.1AI score0.13969EPSS
Exploits0References3
CVE
CVE
added 2025/05/08 12:0 a.m.219 views

CVE-2025-32873

CVE-2025-32873 affects Django: vulnerable in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The issue is in django.utils.html.strip_tags(), which can be exploited to cause a denial-of-service (slow performance) when processing inputs containing large sequences of incomplete HTM...

5.3CVSS5.1AI score0.13969EPSS
Exploits0References4Affected Software1
Ubuntu
Ubuntu
added 2025/05/07 3:22 p.m.14 views

USN-7501-1: Django vulnerability

Elias Myllymäki discovered that Django incorrectly handled stripping large sequences of incomplete HTML tags. A remote attacker could possibly use this issue to cause Django to consume resources, leading to a denial of service...

5.3CVSS6.8AI score0.13969EPSS
Exploits0
Rows per page
Query Builder