VDB

CVE-2015-2316

CVE-2015-2316 PUBLISHED

The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1, when using certain versions of Python, allows remote attackers to cause a denial of service (infinite loop) by increasing the length of the input string.

EPSS 2.25% · 84.9th percentile

Risk Scores

EPSS Score
2.25%
84.9th percentile

Affected Products

VendorProductVersions
Ubuntu:14.04:LTSpython-django0, 1.5.4-1ubuntu1, 1.6-1

Timeline

  • Mar 19, 2015 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 17, 2025 EPSS Score
  • Mar 21, 2025 EPSS Score
  • Mar 22, 2025 EPSS Score
  • Mar 24, 2025 EPSS Score
  • Mar 26, 2025 EPSS Score
  • Mar 29, 2025 EPSS Score
  • Mar 30, 2025 EPSS Score
  • Apr 2, 2025 EPSS Score
  • Apr 3, 2025 EPSS Score
  • May 2, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›