FLAT-CBCC0 – Vulnerability | Fluid Attacks Database

Database

Description

content spoofing

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 14	python-django	>=0 <3:4.2.23-1	3:4.2.23-1
debian 11	python-django	=2:2.2.24-1 \|\| =2:2.2.25-1~deb11u1 \|\| =2:2.2.26-1~deb11u1 \|\| =2:2.2.28-1~deb11u1 \|\| =2:2.2.28-1~deb11u2 \|\| =2:2.2.28-1~deb11u3 \|\| =2:2.2.28-1~deb11u4 \|\| =2:2.2.28-1~deb11u5 \|\| =2:2.2.28-1~deb11u6 \|\| >=0 <2:2.2.28-1~deb11u7	2:2.2.28-1~deb11u7
debian 12	python-django	=3:3.2.19-1 \|\| =3:3.2.19-1+deb12u1 \|\| =3:3.2.19-1+deb12u1~bpo11+1 \|\| =3:3.2.19-1+deb12u2 \|\| =3:3.2.20-1 \|\| =3:3.2.20-1.1 \|\| =3:3.2.21-1 \|\| >=0 <3:3.2.25-0+deb12u1	3:3.2.25-0+deb12u1
debian 13	python-django	>=0 <3:4.2.23-1	3:4.2.23-1
pypi	django	>=5.2 <5.2.2 \|\| >=5.0a1 <5.1.10 \|\| >=0 <4.2.22	5.2.2, 5.1.10, 4.2.22
alpm rolling_release	python-django	>=5.1.9-1 <5.1.11-1	5.1.11-1

Aliases

1. CVE-2025-484322. NVD-2025-484323. OSV-DEBIAN-2025-484324. OSV-2025-484325. GCVE-2025-484326. SECURITY-TRACKER-CVE-2025-48432

References

1. https://docs.djangoproject.com/en/dev/releases/security2. https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-47.yaml3. https://groups.google.com/g/django-announce4. https://www.djangoproject.com/weblog/2025/jun/04/security-releases5. https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases6. http://www.openwall.com/lists/oss-security/2025/06/04/57. http://www.openwall.com/lists/oss-security/2025/06/10/28. http://www.openwall.com/lists/oss-security/2025/06/10/39. http://www.openwall.com/lists/oss-security/2025/06/10/4