CVE-2026-1285 | Django up to 4.2.27/5.2.10/6.0.1 django.utils.text.Truncator.chars/Truncator.words algorithmic complexity

Inserito da Angelo Barbosa | Feb 3, 2026 | CVE

A vulnerability was found in Django up to 4.2.27/5.2.10/6.0.1. It has been declared as problematic. Impacted is the function django.utils.text.Truncator.chars/Truncator.words. The manipulation results in inefficient algorithmic complexity.

This vulnerability is identified as CVE-2026-1285. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2026-1285 | Django up to 4.2.27/5.2.10/6.0.1 django.utils.text.Truncator.chars/Truncator.words algorithmic complexity

Post correlati

CVE-2023-46838 | Xen on Linux Netback null pointer dereference

CVE-2025-59257 | Microsoft

CVE-2024-36944 | Linux Kernel up to 5.15.158/6.1.90/6.6.30/6.8.9 qxl_fence_wait buffer overflow

CVE-2025-2540 | prettyPhoto Library Plugin up to 3.1.6 cross site scripting