[SECURITY] [DSA 2163-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2163-1 [email protected] http://www.debian.org/security/ Nico Golde February 14, 2011 http://www.debian.org/security/faq -...

CVE-2011-0697

Cross-site scripting XSS vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 might allow remote attackers to inject arbitrary web script or HTML via a filename associated with a file upload...

Ubuntu Update for python-django vulnerabilities USN-1040-1

Ubuntu Update for Linux kernel vulnerabilities USN-1040-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10401.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for python-django vulnerabilities USN-1040-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-1040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 9.10 / 10.04 LTS / 10.10 : python-django vulnerabilities (USN-1040-1)

Adam Baldwin discovered that Django did not properly validate query string lookups. This could be exploited to provide an information leak to an attacker with admin privilieges. CVE-2010-4534 Paul McMillan discovered that Django did not validate the length of the token used when generating a...

Ubuntu Update for python-django vulnerability USN-1004-1

Ubuntu Update for Linux kernel vulnerabilities USN-1004-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10041.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for python-django vulnerability USN-1004-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-1004-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.10 : python-django vulnerability (USN-1004-1)

It was discovered that Django did not properly sanitize the cookie value when applying CSRF protections resulting in a cross-site scripting XSS vulnerability. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote...

Debian DSA-1905-1 : python-django - insufficient input validation

The forms library of python-django, a high-level Python web development framework, is using a badly chosen regular expression when validating email addresses and URLs. An attacker can use this to perform denial of service attacks 100% CPU consumption due to bad backtracking via a specially crafte...

Mandriva Security Advisory MDVSA-2009:276-1 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276-1. OpenVAS Vulnerability Test $Id: mdksa20092761.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:276-1 python-django Authors: Thomas Reinke Copyright: Copyrig...

Mandriva Security Advisory MDVSA-2009:276-1 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only O...

Mandrake Security Advisory MDVSA-2009:276 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276. OpenVAS Vulnerability Test $Id: mdksa2009276.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:276 python-django Authors: Thomas Reinke Copyright: Copyright c...

Mandrake Security Advisory MDVSA-2009:275 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:275. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Debian Security Advisory DSA 1905-1 (python-django)

The remote host is missing an update to python-django announced via advisory DSA 1905-1. OpenVAS Vulnerability Test $Id: deb19051.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1905-1 python-django Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Debian: Security Advisory (DSA-1905-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandrake Security Advisory MDVSA-2009:275 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:275. OpenVAS Vulnerability Test $Id: mdksa2009275.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:275 python-django Authors: Thomas Reinke Copyright: Copyright c...

Mandrake Security Advisory MDVSA-2009:276 (python-django)

The remote host is missing an update to python-django announced via advisory MDVSA-2009:276. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandriva Linux Security Advisory : python-django (MDVSA-2009:275)

A vulnerability has been found and corrected in python-django : The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected static media files, which allows remote attackers to conduct directory traversal attacks and read arbitrary fil...

Mandriva Linux Security Advisory : python-django (MDVSA-2009:276-1)

Multiple vulnerabilities has been found and corrected in python-django : The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected static media files, which allows remote attackers to conduct directory traversal attacks and read...

[SECURITY] [DSA 1905-1] New python-django packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1905-1 [email protected] http://www.debian.org/security/ Nico Golde October 10th, 2009 http://www.debian.org/security/faq -...