[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48432/python-django
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jun 4 16:34:10 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9709de09 by Salvatore Bonaccorso at 2025-06-04T17:33:36+02:00
Add CVE-2025-48432/python-django
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2025-48432 [Potential log injection via unescaped request path]
+ - python-django <unfixed> (bug #1107282)
+ NOTE: https://www.djangoproject.com/weblog/2025/jun/04/security-releases/
+ NOTE: Fixed by: https://github.com/django/django/commit/ac03c5e7df8680c61cdb0d3bdb8be9095dba841e (4.2.22)
CVE-2025-5579 (A vulnerability was found in PHPGurukul Dairy Farm Shop Management Sys ...)
NOT-FOR-US: PHPGurukul
CVE-2025-5578 (A vulnerability has been found in PHPGurukul Dairy Farm Shop Managemen ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9709de090da98bc0923c6d14630a0852de9f7089
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9709de090da98bc0923c6d14630a0852de9f7089
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250604/2c0d815d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list