CVE-2025-48383 | codingjoe django-select2 up to 8.4.0 on Select2 ModelSelect2MultipleWidget/ModelSelect2Widget transmission of private resources into a new sphere (‘resource leak’) (GHSA-wjrh-hj83-3wh7)

A vulnerability was found in codingjoe django-select2 up to 8.4.0 on Select2 and classified as critical. This issue affects the function ModelSelect2MultipleWidget/ModelSelect2Widget. The manipulation leads to transmission of private resources into a new sphere (‘resource leak’).

The identification of this vulnerability is CVE-2025-48383. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More