Debian Python-Django vulnerabilities
140 known vulnerabilities affecting debian/python-django.
Total CVEs
140
CISA KEV
0
Public exploits
8
Exploited in wild
1
Severity breakdown
CRITICAL11HIGH40MEDIUM73LOW16
Vulnerabilities
Page 6 of 7
CVE-2024-27351P4HIGHCVSS 7.5fixed in python-django 3:3.2.25-0+deb12u1 (bookworm)2024
CVE-2024-27351 [HIGH] CVE-2024-27351: python-django - In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django...
In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django.utils.text.Truncator.words() method (with html=True) and the truncatewords_html template filter are subject to a potential regular expression denial-of-service attack via a crafted string. NOTE: this issue exists because of an incomplete fix for CVE-2019-14232 and CVE-2023-43665.
debian
CVE-2011-0696P4MEDIUMCVSS 6.8fixed in python-django 1.2.5-1 (bookworm)2011
CVE-2011-0696 [MEDIUM] CVE-2011-0696: python-django - Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP...
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via forged AJAX requests that leverage a "combination of browser plugins and redirects," a related issue to CVE-2011-0447.
Scope: local
debian
CVE-2007-0405P4MEDIUMCVSS 6.5fixed in python-django 0.95.1-1 (bookworm)2007
CVE-2007-0405 [MEDIUM] CVE-2007-0405: python-django - The LazyUser class in the AuthenticationMiddleware for Django 0.95 does not prop...
The LazyUser class in the AuthenticationMiddleware for Django 0.95 does not properly cache the user name across requests, which allows remote authenticated users to gain the privileges of a different user.
Scope: local
bookworm: resolved (fixed in 0.95.1-1)
bullseye: resolved (fixed in 0.95.1-1)
forky: resolved (fixed in 0.95.1-1)
sid: resolved (fixed in 0.95.
debian
CVE-2015-5964P4MEDIUMCVSS 5.0fixed in python-django 1.7.10-1 (bookworm)2015
CVE-2015-5964 [MEDIUM] CVE-2015-5964: python-django - The (1) contrib.sessions.backends.base.SessionBase.flush and (2) cache_db.Sessio...
The (1) contrib.sessions.backends.base.SessionBase.flush and (2) cache_db.SessionStore.flush functions in Django 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions create empty sessions in certain circumstances, which allows remote attackers to cause a denial of service (session store consumption) via unspecified vectors.
Scope: local
bookwo
debian
CVE-2015-8213P4MEDIUMCVSS 5.0fixed in python-django 1.8.7-1 (bookworm)2015
CVE-2015-8213 [MEDIUM] CVE-2015-8213: python-django - The get_format function in utils/formats.py in Django before 1.7.x before 1.7.11...
The get_format function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRET_KEY.
Scope: local
bookworm: resolved (fixed in 1.8.7-1)
bullseye: resolved (fixed
debian
CVE-2011-4137P4MEDIUMCVSS 6.4fixed in python-django 1.3.1-1 (bookworm)2011
CVE-2011-4137 [MEDIUM] CVE-2011-4137: python-django - The verify_exists functionality in the URLField implementation in Django before ...
The verify_exists functionality in the URLField implementation in Django before 1.2.7 and 1.3.x before 1.3.1 relies on Python libraries that attempt access to an arbitrary URL with no timeout, which allows remote attackers to cause a denial of service (resource consumption) via a URL associated with (1) a slow response, (2) a completed TCP connection with no a
debian
CVE-2017-7234P4MEDIUMCVSS 6.1fixed in python-django 1:1.10.7-1 (bookworm)2017
CVE-2017-7234 [MEDIUM] CVE-2017-7234: python-django - A maliciously crafted URL to a Django (1.10 before 1.10.7, 1.9 before 1.9.13, an...
A maliciously crafted URL to a Django (1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18) site using the ``django.views.static.serve()`` view could redirect to any other domain, aka an open redirect vulnerability.
Scope: local
bookworm: resolved (fixed in 1:1.10.7-1)
bullseye: resolved (fixed in 1:1.10.7-1)
forky: resolved (fixed in 1:1.10.7-1)
sid:
debian
CVE-2011-4138P4MEDIUMCVSS 5.0fixed in python-django 1.3.1-1 (bookworm)2011
CVE-2011-4138 [MEDIUM] CVE-2011-4138: python-django - The verify_exists functionality in the URLField implementation in Django before ...
The verify_exists functionality in the URLField implementation in Django before 1.2.7 and 1.3.x before 1.3.1 originally tests a URL's validity through a HEAD request, but then uses a GET request for the new target URL in the case of a redirect, which might allow remote attackers to trigger arbitrary GET requests with an unintended source IP address via a craft
debian
CVE-2015-5144P4MEDIUMCVSS 4.3fixed in python-django 1.7.9-1 (bookworm)2015
CVE-2015-5144 [MEDIUM] CVE-2015-5144: python-django - Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before ...
Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an (1) email message to the EmailValidator, a (2) URL to the URLValidator, or unspecified vectors to the (3)
debian
CVE-2017-7233P4MEDIUMCVSS 6.1fixed in python-django 1:1.10.7-1 (bookworm)2017
CVE-2017-7233 [MEDIUM] CVE-2017-7233: python-django - Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on us...
Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on user input in some cases to redirect the user to an "on success" URL. The security check for these redirects (namely ``django.utils.http.is_safe_url()``) considered some numeric URLs "safe" when they shouldn't be, aka an open redirect vulnerability. Also, if a developer relies on ``i
debian
CVE-2010-4535P4MEDIUMCVSS 5.0fixed in python-django 1.2.4-1 (bookworm)2010
CVE-2010-4535 [MEDIUM] CVE-2010-4535: python-django - The password reset functionality in django.contrib.auth in Django before 1.1.3, ...
The password reset functionality in django.contrib.auth in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not validate the length of a string representing a base36 timestamp, which allows remote attackers to cause a denial of service (resource consumption) via a URL that specifies a large base36 integer.
Scope: local
bookworm: resolv
debian
CVE-2008-3909P4MEDIUMCVSS 5.8fixed in python-django 1.0-1 (bookworm)2008
CVE-2008-3909 [MEDIUM] CVE-2008-3909: python-django - The administration application in Django 0.91, 0.95, and 0.96 stores unauthentic...
The administration application in Django 0.91, 0.95, and 0.96 stores unauthenticated HTTP POST requests and processes them after successful authentication occurs, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and delete or modify data via unspecified requests.
Scope: local
bookworm: resolved (fixed in 1.0-1)
bullseye: resol
debian
CVE-2015-0222P4MEDIUMCVSS 5.0fixed in python-django 1.7.1-1.1 (bookworm)2015
CVE-2015-0222 [MEDIUM] CVE-2015-0222: python-django - ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, w...
ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_hidden_initial is set to True, allows remote attackers to cause a denial of service by submitting duplicate values, which triggers a large number of SQL queries.
Scope: local
bookworm: resolved (fixed in 1.7.1-1.1)
bullseye: resolved (fixed in 1.7.1-1.1)
forky: resolved (f
debian
CVE-2013-1443P4MEDIUMCVSS 5.0fixed in python-django 1.5.4-1 (bookworm)2013
CVE-2013-1443 [MEDIUM] CVE-2013-1443: python-django - The authentication framework (django.contrib.auth) in Django 1.4.x before 1.4.8,...
The authentication framework (django.contrib.auth) in Django 1.4.x before 1.4.8, 1.5.x before 1.5.4, and 1.6.x before 1.6 beta 4 allows remote attackers to cause a denial of service (CPU consumption) via a long password which is then hashed.
Scope: local
bookworm: resolved (fixed in 1.5.4-1)
bullseye: resolved (fixed in 1.5.4-1)
forky: resolved (fixed in 1.5.4
debian
CVE-2011-4139P4MEDIUMCVSS 5.0fixed in python-django 1.3.1-1 (bookworm)2011
CVE-2011-4139 [MEDIUM] CVE-2011-4139: python-django - Django before 1.2.7 and 1.3.x before 1.3.1 uses a request's HTTP Host header to ...
Django before 1.2.7 and 1.3.x before 1.3.1 uses a request's HTTP Host header to construct a full URL in certain circumstances, which allows remote attackers to conduct cache poisoning attacks via a crafted request.
Scope: local
bookworm: resolved (fixed in 1.3.1-1)
bullseye: resolved (fixed in 1.3.1-1)
forky: resolved (fixed in 1.3.1-1)
sid: resolved (fixed in
debian
CVE-2007-5828P4LOWCVSS 6.8fixed in python-django 1.2.1 (bookworm)2007
CVE-2007-5828 [MEDIUM] CVE-2007-5828: python-django - Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.9...
Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.96 allows remote attackers to change passwords of arbitrary users via a request to admin/auth/user/1/password/. NOTE: this issue has been disputed by Debian, since product documentation includes a recommendation for a CSRF protection module that is included with the product. However
debian
CVE-2015-0221P4MEDIUMCVSS 5.0fixed in python-django 1.7.1-1.1 (bookworm)2015
CVE-2015-0221 [MEDIUM] CVE-2015-0221: python-django - The django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10,...
The django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 reads files an entire line at a time, which allows remote attackers to cause a denial of service (memory consumption) via a long line in a file.
Scope: local
bookworm: resolved (fixed in 1.7.1-1.1)
bullseye: resolved (fixed in 1.7.1-1.1)
forky: resolved (fix
debian
CVE-2024-39330P4MEDIUMCVSS 4.3fixed in python-django 3:3.2.25-0+deb12u1 (bookworm)2024
CVE-2024-39330 [MEDIUM] CVE-2024-39330: python-django - An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derive...
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes of the django.core.files.storage.Storage base class, when they override generate_filename() without replicating the file-path validations from the parent class, potentially allow directory traversal via certain inputs during a save() call. (Built-in Storage sub-classes
debian
CVE-2015-2317P4MEDIUMCVSS 4.3fixed in python-django 1.7.7-1 (bookworm)2015
CVE-2015-2317 [MEDIUM] CVE-2015-2317: python-django - The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, 1.6.x before...
The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1 does not properly validate URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a control character in a URL, as demonstrated by a \x08javascript: URL.
Scope: local
bookworm: resolved (fixed in 1.7
debian
CVE-2013-0306P4MEDIUMCVSS 5.0fixed in python-django 1.4.4-1 (bookworm)2013
CVE-2013-0306 [MEDIUM] CVE-2013-0306: python-django - The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 befor...
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service (memory consumption) or trigger server errors via a modified max_num parameter.
Scope: local
bookworm: resolved (fixed in 1.4.4-1)
bullseye: resolved (fixed i
debian