Django Project Django 4.2.15

CPE Details

Django Project Django 4.2.15
djangoproject
django
4.2.15
2025-01-15
17h01 +00:00
2025-01-15
17h01 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:djangoproject:django:4.2.15:*:*:*:*:*:*:*

Informations

Vendor

djangoproject

Product

django

Version

4.2.15

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-45230 2024-10-08 00h00 +00:00 An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.
7.5
Haute
CVE-2024-45231 2024-10-08 00h00 +00:00 An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome (only when e-mail sending is consistently failing).
5.3
Moyen