CVE-2026-1285 | Django up to 4.2.27/5.2.10/6.0.1 django.utils.text.Truncator.chars/Truncator.words algorithmic complexity

Inserito da Angelo Barbosa | Feb 3, 2026 | CVE

A vulnerability was found in Django up to 4.2.27/5.2.10/6.0.1. It has been declared as problematic. Impacted is the function django.utils.text.Truncator.chars/Truncator.words. The manipulation results in inefficient algorithmic complexity.

This vulnerability is identified as CVE-2026-1285. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2026-1285 | Django up to 4.2.27/5.2.10/6.0.1 django.utils.text.Truncator.chars/Truncator.words algorithmic complexity

Post correlati

CVE-2024-22386 | Linux Kernel up to 6.5 Exynos Device Driver exynos_drm_crtc_atomic_disable null pointer dereference

CVE-2025-41255 | iterate Cyberduck/Mountain Duck TLS Certificate privileges assignment

CVE-2024-47124 | goTenna Pro Series up to 1.6.1 Callsign cleartext transmission (icsa-24-270-04)

CVE-2025-15451 | xnx3 wangmarket up to 4.9 System Variables Page variableSave.do Description cross site scripting