Lucene search
K

4 matches found

OSV
OSV
added 2026/06/22 6:16 p.m.3 views

UBUNTU-CVE-2026-53538

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, QuerystringParser treated ; as a field separator in application/x-www-form-urlencoded bodies, in addition to &. The WHATWG URL standard, modern browsers, and Python's urllib.parse since the CVE-2021-23336 fix treat only...

3.7CVSS5.8AI score0.00176EPSS
Exploits0References2
OSV
OSV
added 2026/04/18 12:16 a.m.9 views

UBUNTU-CVE-2026-40347

Python-Multipart is a streaming multipart parser for Python. Versions prior to 0.0.26 have a denial of service vulnerability when parsing crafted multipart/form-data requests with large preamble or epilogue sections. Upgrade to version 0.0.26 or later, which skips ahead to the next boundary...

5.3CVSS5.8AI score0.00351EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/04/18 12:16 a.m.12 views

CVE-2026-40347

Python-Multipart is a streaming multipart parser for Python. Versions prior to 0.0.26 have a denial of service vulnerability when parsing crafted multipart/form-data requests with large preamble or epilogue sections. Upgrade to version 0.0.26 or later, which skips ahead to the next boundary...

5.3CVSS5.8AI score0.00351EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/02/05 3:15 p.m.30 views

CVE-2024-24762

python-multipart is a streaming multipart parser for Python. When using form data, python-multipart uses a Regular Expression to parse the HTTP Content-Type header, including options. An attacker could send a custom-made Content-Type option that is very difficult for the RegEx to process, consumi...

7.5CVSS6.7AI score0.01523EPSS
Exploits1References4
Rows per page
Query Builder