Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi Django Security Advisories
Browse all Security Advisories for pypi Django
Loading...
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: about 1 month ago
GSA_kwCzR0hTQS01aGdjLTJ2ZnAtbXF2Y84ABADU
Django vulnerable to denial-of-service attack via the urlize() and urlizetrunc() template filtersEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: about 1 month ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: about 1 month ago
GSA_kwCzR0hTQS1ycnFjLWMyangtNmpnds4ABADW
Django allows enumeration of user e-mail addressesEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: about 1 month ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
GSA_kwCzR0hTQS03OTVjLTl4cGMteHc2Z84AA-cz
Django vulnerable to a denial-of-service attackEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: 4 months ago
GSA_kwCzR0hTQS1wdjRwLWN3d2ctNHJwaM4AA-c1
Django SQL injection vulnerabilityEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: 4 months ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
GSA_kwCzR0hTQS1qaDc1LTk5aGgtcXZ4Oc4AA-c0
Django memory consumption vulnerabilityEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
GSA_kwCzR0hTQS1yODM2LWhoNnYtcmc1Z84AA-cw
Django vulnerable to denial-of-service attackEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
GSA_kwCzR0hTQS1mNmY4LTlteDYtOW14Ms4AA9wW
Django vulnerable to Denial of ServiceEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
GSA_kwCzR0hTQS1xZzJwLTlqd3ItbW1xZs4AA9wQ
Django vulnerable to Denial of ServiceEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
GSA_kwCzR0hTQS14N3EyLXdyN2cteHFtZs4AA9wR
Django vulnerable to user enumeration attackEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: 4 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
GSA_kwCzR0hTQS05am1mLTIzN2ctcWY0Ns4AA9wT
Django Path Traversal vulnerabilityEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: 4 months ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: 10 months ago
GSA_kwCzR0hTQS14eGo5LWY2cnYtbTN4NM4AA5IP
Django denial-of-service attack in the intcomma template filterEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: 10 months ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: about 1 year ago
GSA_kwCzR0hTQS1oOGdjLXBnajItdmptM84AA25m
Django Denial-of-service in django.utils.text.TruncatorEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: about 1 year ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 1 year ago
GSA_kwCzR0hTQS1xbWY5LTZqcWYtajhmcc4AA23t
Django potential denial of service vulnerability in UsernameField on WindowsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 1 year ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 1 year ago
GSA_kwCzR0hTQS1qaDN3LTR2dmYtbWpncs4AA0Lg
Django has regular expression denial of service vulnerability in EmailValidator/URLValidatorEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 1 year ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 1 year ago
GSA_kwCzR0hTQS1yM3hjLXByZ3ItbWc5cM4AAzG9
Django bypasses validation when using one form field to upload multiple filesEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 1 year ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0yaHJ3LWh4NjctMzR4Ns4AAxpM
Resource exhaustion in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 2 years ago
GSA_kwCzR0hTQS04eDk0LWhtamgtOTdocc4AAt78
Django vulnerable to Reflected File Download attackEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS1wNjR4LThyeHgtd2Y2cc4AAtF-
Django `Trunc()` and `Extract()` database functions vulnerable to SQL InjectionEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS01OXc4LTR3bTItNHh3OM4AAfPe
Django Image Field Vulnerable to Image Decompression BombsEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS01aDJxLTRocnAtdjlycs4AAfPc
Django vulnerable to Improper Restriction of Operations within the Bounds of a Memory BufferEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1xcmg3LXg2ZnAtYzJtcM4AAfMI
XML Entity Expansion (XEE) in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS14NjRtLTY4NmYtZm1tM84AAfL2
XML External Entity (XXE) in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS00YzQyLTRyeG0teDZxZs4AAeye
Django Denial of Service Vulnerability in the authentication frameworkEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS02d2dwLWZ3Zm0tbXhwM84AAct0
Django allows user sessions hijacking via an empty string in the session keyEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 2 years ago
GSA_kwCzR0hTQS02d2NyLXdjcW0tM21maM4AAcl8
Django settings leak in date template filterEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
GSA_kwCzR0hTQS03cWZ3LWo3aHAtdjQ1Z84AAcfU
Django WSGI Header Spoofing VulnerabilityEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS02Zzk1LXg2Y2otbWc0ds4AAce7
Django database denial-of-service with ModelMultipleChoiceFieldEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1qaGpnLXcyY3AtNWo0NM4AAce9
Django DoS in django.views.static.serveEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
GSA_kwCzR0hTQS1ndjk4LWc2MjgtbTl4Nc4AAce6
Django Cross-site Scripting VulnerabilityEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS14MzhtLTQ4NmMtMndyOc4AAcXd
Denial-of-service possibility in logout() view by filling session storeEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS04OWhqLXhmeDUtN3E2Ns4AAcJo
Django Reuses Cached CSRF TokenEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS1ydnE2LW1ycHYtbTZybc4AAcJq
Code Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS13cWpqLWh4ODQtdjQ0Oc4AAcJQ
Django Vulnerable to MySQL InjectionEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: over 2 years ago
GSA_kwCzR0hTQS1xN3EyLXFmMnEtcnczd84AAcJT
Django Vulnerable to Cache PoisoningEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: over 2 years ago
GSA_kwCzR0hTQS1wdzI3LXc3dzQtOXFjN84AAZQd
Django XSS VulnerabilityEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1xNXF3LTQzNjQtNWhobc4AAYwZ
Django Vulnerable to HTTP Response Splitting AttackEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1jcWY3LWZmOWgtNzk2N84AAYwU
Django ReDoS in validators.URLValidatorEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1wZ3hoLXdmdzQtangyds4AAYdf
Django denial of service via empty session record creationEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 41.0
Published: over 2 years ago
GSA_kwCzR0hTQS0zZjJjLWptNnYtY3IzNc4AAYRU
Django DNS Rebinding VulnerabilityEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 41.0
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS1tdjhnLWZoaDYtNjI2N84AAYRT
Django user with hardcoded password created when running tests on OracleEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
GSA_kwCzR0hTQS05Y3dnLW1oeGYtaGg1Oc4AAYL4
Django cross-site scripting (XSS) vulnerability via is_safe_url functionEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1ybTJqLXg1OTUtcTljas4AAXiH
Django Vulnerable to Cache PoisoningEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS13eGczLW1mcGgtcWc5d84AAXiG
Django Might Allow CSRF Requests via URL VerificationEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS12cTNoLTNxN3YtOXByd84AAVFj
Django Allows Open RedirectsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
GSA_kwCzR0hTQS1ydzc1LW03Z3AtOTJtM84AAVFB
Django data leakage via querystring manipulation in adminEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1mN2NtLWNjZnAtM3E0cs4AAVFA
Django Incorrectly Validates URLsEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: over 2 years ago
GSA_kwCzR0hTQS02MjVnLWd4OGMteGNtZ84AAVE-
Django Middleware Enables Session HijackingEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1qM2ozLWpyZmgtY20yd84AAVA_
Django Denial-of-service possibility with strip_tagsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
GSA_kwCzR0hTQS03ZnE4LTRwdjUtNXc1Y84AAVA8
Django cross-site scripting (XSS) attack via user-supplied redirect URLsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS0yOTZ3LTZxaHEtZ2Y5Ms4AAU-L
Django denial of service via file upload namingEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 2 years ago
GSA_kwCzR0hTQS1yN3c2LXA0N2ctdmo1M83igQ
Django Data leakage via admin history logEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
GSA_kwCzR0hTQS1nOHhnLWpnajYtNDlyM83ifg
Django is vulnerable to Denial of Service attack in formsetEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS1wNm01LWg3cHAtdjJ4Nc3M8Q
Django Regex Algorithmic Complexity Causes Denial of ServiceEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
GSA_kwCzR0hTQS05eGc3LWdnOW0tcm1xOc3JJQ
Django Admin Media Handler Vulnerable to Directory TraversalEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 2 years ago
GSA_kwCzR0hTQS05djhoLTU3Z3YtcWNoNs2qog
Django vulnerable to Denial of Service via i18n middleware componentEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1xYzk5LWczd20taGd4cs2XHg
Django Arbitrary Code ExecutionEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1td3YyLTM5OGgtdjQ4Oc2XIA
Django Improper Access ControlEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS0yZ3dqLTdqbXYtaDI2cs07Ng
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
GSA_kwCzR0hTQS13MjRoLXY5cWgtOGd4as07NQ
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
GSA_kwCzR0hTQS02Y3czLWc2d3YtYzJ4ds0okA
Infinite Loop in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
GSA_kwCzR0hTQS04YzVqLTlyOWYtYzZ3OM0g8Q
Information disclosure in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: almost 3 years ago
GSA_kwCzR0hTQS1qcmgyLWhjNHItN2p3eM0g8w
Directory-traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: almost 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
GSA_kwCzR0hTQS01M3F3LXE3NjUtNGZ3d80g9Q
Denial-of-service in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: almost 3 years ago
GSA_kwCzR0hTQS12NnJoLWhwNXgtODZyds0afw
Potential bypass of an upstream access control based on URL paths in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 36.9
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhwZnAtZjU2OS1xM3Ay
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5OXYtNXczYy1qcXE5
Django Access Control Bypass possibly leading to SSRF, RFI, and LFI attacksEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4dzgtcWpxMy0yZ2Zt
Path Traversal in DjangoEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: over 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFtNTctdmhxMy0zZndm
Header injection possible in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ4anAtbWZtOS13NHdy
Path Traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhneGMtdjJxZy1jaG1o
Directory Traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 3 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02Z2otaDlnbS1ndzQ0
Django Incorrect Default PermissionsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 3 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJtMzQtamNqdi00NXhm
XSS in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwanItajU3eC13eGZ3
Data leakage via cache key collision in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: over 4 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNnaDIteHc3NC1qbWN3
SQL injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 44.5
Published: over 4 years ago
Critical
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtcjQtbTJoNS0zM3F4
SQL injection in DjangoEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 5 years ago
Critical
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmcTYtaHE1ci0yN3I2
Django Potential account hijack via password reset formEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 5 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2bWYtcjkyci0yN2hy
Django allows unintended model editingEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 5 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyOTctY2o1NS05aHJx
SQL Injection in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: over 5 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1anYtNHA3dy02NGpn
Django Denial-of-service in strip_tags()Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5cWctM2o4cC1yNjN2
Uncontrolled Recursion in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM0cWgtNHZndi1xYzZn
Django Denial-of-service in django.utils.text.TruncatorEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1ODItMnBjaC0zeHYz
Django Denial-of-service by filling session storeEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 5 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjN3YtMmY0OS04aDI2
Django Incorrect HTTP detection with reverse-proxy connecting via HTTPSEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: over 5 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdycDItZm0yaC13Y2hq
Django Cross-site Scripting in AdminURLFieldWidgetEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 5 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoNGgtdjNmMi1yMnBw
Uncontrolled Memory Consumption in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 6 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMzN3gtNHE4Zy1wcmM1
Improper Input Validation in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyOHctNng4Yy02anI5
Django vulnerable to XSS on 500 pagesEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM3aHAtNzY1eC1qOTV4
Django open redirect and possible XSS attack via user-supplied numeric redirect URLsEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIyOHYtbXc2Ny1tNXA5
Django denial-of-service possibility in urlize and urlizetrunc template filtersEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 26.8
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVoZzMtNmMyZi1mM3dy
Django open redirectEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: about 6 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmNGotajI3Mi1majg2
Django vulnerable to information leakage in AuthenticationFormEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: about 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtM3ItcnY1Zy1mY3Bx
Cross-site scripting in djangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ4cGctZ2c5Zy03Nmdq
Cross-site scripting in djangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 6 years ago
Moderate
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4OGotOTN2Yy13cG1w
Session manipulation in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: over 6 years ago
Critical
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnOWgtYzg4dy1yN2gy
Directory traversal in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 6 years ago
Moderate
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3cGgtZmM0dy13cXAy
Improper date handling in DjangoEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
High
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3cjUtcTlyeC0yOTRm
Improper query string handling in DjangoEcosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 32.9
Published: over 6 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqcXctY3Jxai13OHF3
Denial of service in djangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5NWotaDJydi1xcmc0
Django Cross-Site Request Forgery vulnerabilityEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
High
Ecosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVqMmgtaDVoZy0zd2Y4
Cross-site request forgery in DjangoEcosystems: pypi
Packages: Django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: over 6 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 4
Ecosystems: 12
Packages: 9,040
Repositories: 4
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
433
tensorflow-gpu
427
tensorflow-cpu
423
Django
100
apache-airflow
85
Plone
72
ansible
63
salt
56
apache-superset
51
nova
47
mlflow
46
django
44
rdiffweb
42
plone
41
vyper
38
matrix-synapse
35
moin
35
gradio
34
opencv-contrib-python
31
opencv-python
31
Pillow
31
keystone
31
pillow
26
langchain
20
glance
20
mindsdb
18
mercurial
18
cobbler
18
notebook
17
cryptography
16
neutron
16
PaddlePaddle
16
paddlepaddle
16
pyload-ng
16
OctoPrint
15
calibreweb
15
ethyca-fides
15
aiohttp
14
modoboa
14
lollms
14
pyftpdlib
14
vantage6
13
wagtail
12
swift
12
urllib3
12
zenml
12
twisted
12
roundup
12
waitress
11
onionshare-cli
11
horizon
11
trytond
11
Flask-AppBuilder
10
sentry
10
opencv-python-headless
10
opencv-contrib-python-headless
10
nautobot
10
kiwitcms
9
pyspark
9
python-keystoneclient
9
cinder
9
ryu
9
zope
9
ckan
8
label-studio
8
ipython
8
trac
8
Zope
8
pgadmin4
8
aubio
8
litellm
8
numpy
8
lief
7
inventree
7
jupyter-server
7
pysaml2
7
scrapy
7
Products.CMFPlone
7
matrix-sydent
7
pip
7
web2py
6
apache-airflow-providers-apache-hive
6
aim
6
requests
6
Zope2
6
ansible-core
6
Moin
6
mailman
6
lxml
6
tornado
6
tuf
6
mage-ai
6
changedetection.io
6
yt-dlp
6
graphite-web
6
werkzeug
5
bleach
5
nltk
5
grpcio
5
jupyterhub
5
feedparser
5
torchserve
5
whoogle-search
5
Werkzeug
5
langchain-experimental
5
paramiko
5
ait-core
5
lmdb
5
Jinja2
5
saleor
5
dtale
5
oauthenticator
5
pretix
5
omero-web
5
grpc
5
python-gnupg
5
reportlab
4
open-webui
4
qutebrowser
4
Flask-Security-Too
4
tripleo-heat-templates
4
PyPDF2
4
transformers
4
apache-submarine
4
esphome
4
onnx
4
Pygments
4
dbt-core
4
awsiotsdk
4
streamlit
4
langchain-community
4
pywasm3
4
markdown2
4
keylime
4
Weblate
4
Scrapy
4
mobsf
4
indy-node
4
codechecker
4
barbican
4
indico
4
langflow
4
jwcrypto
4
FreeTAKServer-UI
4
apache-iotdb
4
httpie
4
Radicale
4
Nova
4
jupyterlab
4
Keystone
4
buildbot
4
nvflare
4
bottle
4
wasmtime
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
GitPython
4
aws-iot-device-sdk-v2
4
sanic
3
mitmproxy
3
openstack-heat
3
snowflake-connector-python
3
llama-index
3
clearml
3
ray
3
dulwich
3
TinyMCE
3
apache-libcloud
3
openvpn-monitor
3
Products.PluggableAuthService
3
tinymce/tinymce
3
docassemble.webapp
3
ansible-runner
3
poetry
3
Twisted
3
wger
3
quokka
3
asyncua
3
asyncssh
3
jupyter-server-proxy
3
flask
3
gerapy
3
copyparty
3
fava
3
llama-index-core
3
pycrypto
3
Red-DiscordBot
3
AccessControl
3
anki
3
keyring
3
micropython-io
3
micropython-copy
3
openc3
3
openc3
3
pyyaml
3
plone.app.event
3
wasm3
3
django-tinymce
3
keystonemiddleware
3
SQLAlchemy
3
plone.app.theming
3