Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi Django Security Advisories
Loading...
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 6 months ago
GSA_kwCzR0hTQS1xbWY5LTZqcWYtajhmcc4AA23t
Django potential denial of service vulnerability in UsernameField on WindowsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 6 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 10 months ago
GSA_kwCzR0hTQS1qaDN3LTR2dmYtbWpncs4AA0Lg
Django has regular expression denial of service vulnerability in EmailValidator/URLValidatorEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 10 months ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: 12 months ago
GSA_kwCzR0hTQS1yM3hjLXByZ3ItbWc5cM4AAzG9
Django bypasses validation when using one form field to upload multiple filesEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: 12 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 1 year ago
GSA_kwCzR0hTQS0yaHJ3LWh4NjctMzR4Ns4AAxpM
Resource exhaustion in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 1 year ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 1 year ago
GSA_kwCzR0hTQS04eDk0LWhtamgtOTdocc4AAt78
Django vulnerable to Reflected File Download attackEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 1 year ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01aDJxLTRocnAtdjlycs4AAfPc
Django vulnerable to Improper Restriction of Operations within the Bounds of a Memory BufferEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS02d2dwLWZ3Zm0tbXhwM84AAct0
Django allows user sessions hijacking via an empty string in the session keyEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS02Zzk1LXg2Y2otbWc0ds4AAce7
Django database denial-of-service with ModelMultipleChoiceFieldEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ydnE2LW1ycHYtbTZybc4AAcJq
Code Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13eGczLW1mcGgtcWc5d84AAXiG
Django Might Allow CSRF Requests via URL VerificationEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ydzc1LW03Z3AtOTJtM84AAVFB
Django data leakage via querystring manipulation in adminEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qM2ozLWpyZmgtY20yd84AAVA_
Django Denial-of-service possibility with strip_tagsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03ZnE4LTRwdjUtNXc1Y84AAVA8
Django cross-site scripting (XSS) attack via user-supplied redirect URLsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1wNm01LWg3cHAtdjJ4Nc3M8Q
Django's Insufficient Algorithmic Complexity Causes Denial of ServiceEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS05eGc3LWdnOW0tcm1xOc3JJQ
Django Admin Media Handler Vulnerable to Directory TraversalEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS05djhoLTU3Z3YtcWNoNs2qog
Django vulnerable to Denial of Service via i18n middleware componentEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 2 years ago
GSA_kwCzR0hTQS13MjRoLXY5cWgtOGd4as07NQ
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 2 years ago
GSA_kwCzR0hTQS0yZ3dqLTdqbXYtaDI2cs07Ng
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 2 years ago
GSA_kwCzR0hTQS02Y3czLWc2d3YtYzJ4ds0okA
Infinite Loop in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS04YzVqLTlyOWYtYzZ3OM0g8Q
Information disclosure in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
GSA_kwCzR0hTQS1qcmgyLWhjNHItN2p3eM0g8w
Directory-traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS01M3F3LXE3NjUtNGZ3d80g9Q
Denial-of-service in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: over 2 years ago
GSA_kwCzR0hTQS12NnJoLWhwNXgtODZyds0afw
Potential bypass of an upstream access control based on URL paths in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhwZnAtZjU2OS1xM3Ay
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFtNTctdmhxMy0zZndm
Header injection possible in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ4anAtbWZtOS13NHdy
Path Traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhneGMtdjJxZy1jaG1o
Directory Traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: about 3 years ago
Statistics
Advisories: 18,372
Packages: 8,294
Repositories: 3
Ecosystems: 12
Packages: 8,294
Repositories: 3
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
django
80
apache-airflow
78
ansible
63
salt
50
apache-superset
48
Plone
45
plone
43
rdiffweb
42
Pillow
41
vyper
38
matrix-synapse
35
mlflow
31
opencv-python
30
opencv-contrib-python
30
Django
27
moin
23
langchain
18
PaddlePaddle
17
mercurial
17
cobbler
17
pillow
16
nova
15
paddlepaddle
15
notebook
15
cryptography
15
gradio
14
modoboa
14
pyftpdlib
14
keystone
14
pyload-ng
14
neutron
13
OctoPrint
12
vantage6
12
glance
11
calibreweb
11
twisted
11
urllib3
11
aiohttp
11
onionshare-cli
11
trytond
10
wagtail
10
Flask-AppBuilder
10
zope
9
opencv-contrib-python-headless
9
opencv-python-headless
9
ethyca-fides
9
waitress
9
Zope
9
kiwitcms
9
trac
8
numpy
8
python-keystoneclient
8
aubio
8
roundup
8
nautobot
8
label-studio
8
swift
7
jupyter-server
7
pysaml2
7
pgadmin4
7
lief
7
scrapy
7
ipython
7
pip
7
matrix-sydent
7
mailman
6
apache-airflow-providers-apache-hive
6
lxml
6
Zope2
6
sentry
6
tuf
6
web2py
6
horizon
6
graphite-web
6
mindsdb
6
inventree
6
bleach
5
pyspark
5
saleor
5
lmdb
5
ckan
5
requests
5
python-gnupg
5
feedparser
5
whoogle-search
5
Products.CMFPlone
5
paramiko
5
cinder
5
jupyterhub
4
tripleo-heat-templates
4
bottle
4
Radicale
4
aws-iot-device-sdk-v2
4
Pygments
4
reportlab
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
markdown2
4
awsiotsdk
4
nltk
4
starlette
4
nvflare
4
datasette
4
Jinja2
4
ansible-core
4
transformers
4
esphome
4
httpie
4
Flask-Security-Too
4
grpc
4
keylime
4
grpcio
4
oauthenticator
4
FreeTAKServer-UI
4
tornado
4
PyPDF2
4
buildbot
4
pretix
4
werkzeug
4
GitPython
4
omero-web
4
yt-dlp
4
jwcrypto
4
qutebrowser
4
mistune
3
Mezzanine
3
gerapy
3
SQLAlchemy
3
copyparty
3
django-helpdesk
3
Werkzeug
3
dulwich
3
pyyaml
3
sanic
3
flask
3
pandasai
3
mayan-edms
3
barbican
3
aim
3
indy-node
3
protobuf
3
ryu
3
streamlit
3
httplib2
3
sosreport
3
zenml
3
sickrage
3
rsa
3
Weblate
3
ujson
3
openvpn-monitor
3
Keystone
3
pyarrow
3
Products.PluggableAuthService
3
changedetection.io
3
ajenti
3
fava
3
Moin
3
pycrypto
3
mitmproxy
3
keyring
3
io.grpc:grpc-protobuf
3
wger
3
apache-libcloud
3
ecdsa
3
plone.app.event
3
plone.app.theming
3
plone.app.dexterity
3
plone.supermodel
3
sqlparse
3
homeassistant
3
onnx
3
asyncua
3
torchserve
3
ansible-runner
3
localstack
3
poetry
3
bitlyshortener
3
indico
3
octavia
3
slixmpp
3
jupyterlab
3
clearml
3
docassemble.webapp
3
apache-iotdb
3
asyncssh
3
quokka
3
pywasm3
3
apache-airflow-providers-apache-spark
3
ray
3
python-jose
3
pymatgen
2
pyxdg
2
openapi-python-client
2
wagtail-2fa
2
zope2
2
py
2
ctx
2
Filter by Repository