[SECURITY] [DSA 2163-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2163-1 [email protected] http://www.debian.org/security/ Nico Golde February 14, 2011 http://www.debian.org/security/faq -...

CVE-2011-0697

Cross-site scripting XSS vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 might allow remote attackers to inject arbitrary web script or HTML via a filename associated with a file upload...

Ubuntu Update for python-django vulnerabilities USN-1040-1

Ubuntu Update for Linux kernel vulnerabilities USN-1040-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10401.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for python-django vulnerabilities USN-1040-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-1040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 9.10 / 10.04 LTS / 10.10 : python-django vulnerabilities (USN-1040-1)

Adam Baldwin discovered that Django did not properly validate query string lookups. This could be exploited to provide an information leak to an attacker with admin privilieges. CVE-2010-4534 Paul McMillan discovered that Django did not validate the length of the token used when generating a...

Ubuntu Update for python-django vulnerability USN-1004-1

Ubuntu Update for Linux kernel vulnerabilities USN-1004-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10041.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for python-django vulnerability USN-1004-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-1004-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.10 : python-django vulnerability (USN-1004-1)

It was discovered that Django did not properly sanitize the cookie value when applying CSRF protections resulting in a cross-site scripting XSS vulnerability. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote...

Debian DSA-1905-1 : python-django - insufficient input validation

The forms library of python-django, a high-level Python web development framework, is using a badly chosen regular expression when validating email addresses and URLs. An attacker can use this to perform denial of service attacks 100% CPU consumption due to bad backtracking via a specially crafte...

Mandriva Security Advisory MDVSA-2009:276-1 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276-1. OpenVAS Vulnerability Test $Id: mdksa20092761.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:276-1 python-django Authors: Thomas Reinke Copyright: Copyrig...

Mandriva Security Advisory MDVSA-2009:276-1 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only O...

Mandrake Security Advisory MDVSA-2009:275 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:275. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:276 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276. OpenVAS Vulnerability Test $Id: mdksa2009276.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:276 python-django Authors: Thomas Reinke Copyright: Copyright c...

Debian Security Advisory DSA 1905-1 (python-django)

The remote host is missing an update to python-django announced via advisory DSA 1905-1. OpenVAS Vulnerability Test $Id: deb19051.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1905-1 python-django Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Debian: Security Advisory (DSA-1905-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandrake Security Advisory MDVSA-2009:275 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:275. OpenVAS Vulnerability Test $Id: mdksa2009275.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:275 python-django Authors: Thomas Reinke Copyright: Copyright c...

Mandrake Security Advisory MDVSA-2009:276 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandriva Linux Security Advisory : python-django (MDVSA-2009:276-1)

Multiple vulnerabilities has been found and corrected in python-django : The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected static media files, which allows remote attackers to conduct directory traversal attacks and read...

Mandriva Linux Security Advisory : python-django (MDVSA-2009:275)

A vulnerability has been found and corrected in python-django : The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected static media files, which allows remote attackers to conduct directory traversal attacks and read arbitrary fil...

[SECURITY] [DSA 1905-1] New python-django packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1905-1 [email protected] http://www.debian.org/security/ Nico Golde October 10th, 2009 http://www.debian.org/security/faq -...