FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-10-13 21:34:00 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0db8684f-8938-11f0-8325-bc2411f8eb0bDjango -- multiple vulnerabilities

Django reports:

CVE-2025-57833: Potential SQL injection in FilteredRelation column aliases.


Discovery 2025-09-01
Entry 2025-09-04
py39-django42
py310-django42
py311-django42
< 4.2.24

py310-django51
py311-django51
< 5.1.12

py310-django52
py311-django52
< 5.2.6

CVE-2025-57833
https://www.djangoproject.com/weblog/2025/sep/03/security-releases/
90fc859e-9fe4-11f0-9fa2-080027836e8bDjango -- multiple vulnerabilities

Django reports:

CVE-2025-59681: Potential SQL injection in QuerySet.annotate(), alias(), aggregate(), and extra() on MySQL and MariaDB.

CVE-2025-59682: Potential partial directory-traversal via archive.extract().


Discovery 2025-10-01
Entry 2025-10-02
py39-django42
py310-django42
py311-django42
< 4.2.25

py310-django51
py311-django51
< 5.1.13

py310-django52
py311-django52
< 5.2.7

CVE-2025-59681
CVE-2025-59682
https://www.djangoproject.com/weblog/2025/oct/01/security-releases/