Browse Security Advisories
Security Advisories for django in pypi Clear Filters
Moderate
7 months ago
Django vulnerable to Allocation of Resources Without Limits or Throttling
pypi
Django
Moderate
8 months ago
Django has a potential denial-of-service vulnerability in IPv6 validation
pypi
Django
Moderate
10 months ago
Django denial-of-service in django.utils.html.strip_tags()
pypi
django, Django
Moderate
12 months ago
Django vulnerable to denial-of-service attack via the urlize() and urlizetrunc() template filters
pypi
Django
High
over 1 year ago
Django denial-of-service attack in the intcomma template filter
pypi
Django, django
Moderate
almost 2 years ago
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri
pypi
django
High
almost 2 years ago
Django potential denial of service vulnerability in UsernameField on Windows
pypi
Django
High
about 2 years ago
Django has regular expression denial of service vulnerability in EmailValidator/URLValidator
pypi
Django
Critical
over 2 years ago
Django bypasses validation when using one form field to upload multiple files
pypi
Django
High
over 2 years ago
Django contains Uncontrolled Resource Consumption via cached header
pypi
django
High
almost 3 years ago
Django denial-of-service vulnerability in internationalized URLs
pypi
django
Critical
about 3 years ago
Django `Trunc()` and `Extract()` database functions vulnerable to SQL Injection
pypi
Django
High
over 3 years ago
Django Image Field Vulnerable to Image Decompression Bombs
pypi
Django, django
High
over 3 years ago
Django vulnerable to Improper Restriction of Operations within the Bounds of a Memory Buffer
pypi
Django
High
over 3 years ago
Django Denial of Service Vulnerability in the authentication framework
pypi
Django
Moderate
over 3 years ago
Django allows user sessions hijacking via an empty string in the session key
pypi
Django
Moderate
over 3 years ago
Denial-of-service possibility in logout() view by filling session store
pypi
Django
Moderate
over 3 years ago
Django cross-site scripting (XSS) vulnerability in the AdminURLFieldWidget widget
pypi
django
Critical
over 3 years ago
Django user with hardcoded password created when running tests on Oracle
pypi
Django
Moderate
over 3 years ago
Django cross-site scripting (XSS) vulnerability via is_safe_url function
pypi
Django
Moderate
over 3 years ago
Django cross-site scripting (XSS) attack via user-supplied redirect URLs
pypi
Django
High
over 3 years ago
Django vulnerable to Denial of Service via i18n middleware component
pypi
Django
Moderate
almost 4 years ago
Potential bypass of an upstream access control based on URL paths in Django
pypi
Django
High
over 4 years ago
Django Access Control Bypass possibly leading to SSRF, RFI, and LFI attacks
pypi
Django
Filter by Severity
Filter by Ecosystem
maven
6,842
packagist
5,423
pypi
4,943
npm
4,288
go
2,925
nuget
1,849
cargo
1,085
rubygems
925
hex
38
actions
37
swift
35
pub
9
Filter by Package
tensorflow
433
tensorflow-gpu
427
tensorflow-cpu
423
Django
108
apache-airflow
85
Plone
72
salt
65
ansible
63
apache-superset
61
mlflow
53
nova
48
django
46
vyper
44
gradio
44
rdiffweb
42
matrix-synapse
42
plone
41
picklescan
39
moin
35
keystone
32
opencv-contrib-python
31
opencv-python
31
pillow
28
Pillow
28
open-webui
25
vllm
25
pyload-ng
23
glance
21
aim
20
ethyca-fides
20
langchain
20
neutron
19
transformers
18
mercurial
18
cobbler
18
mindsdb
18
calibreweb
17
OctoPrint
17
cryptography
17
notebook
17
paddlepaddle
16
PaddlePaddle
16
lollms
16
aiohttp
15
modoboa
14
vantage6
14
litellm
14
mobsf
14
pyftpdlib
14
urllib3
14
zenml
13
h2o
13
roundup
13
nautobot
12
swift
12
sentry
12
pgadmin4
12
wagtail
12
twisted
12
label-studio
11
waitress
11
horizon
11
onionshare-cli
11
trytond
11
opencv-python-headless
10
pyspark
10
Flask-AppBuilder
10
opencv-contrib-python-headless
10
zope
9
agentscope
9
python-keystoneclient
9
ryu
9
cinder
9
lief
9
ckan
9
kiwitcms
9
ai.h2o:h2o-core
9
tornado
8
aubio
8
changedetection.io
8
bentoml
8
llama-index
8
numpy
8
trac
8
dbgpt
8
ipython
8
indico
8
copyparty
8
Zope
8
Zope2
8
jupyter-server
7
executorch
7
web2py
7
requests
7
matrix-sydent
7
inventree
7
scrapy
7
Products.CMFPlone
7
llama-index-core
7
pip
7
pysaml2
7
langchain-community
6
tuf
6
yt-dlp
6
whoogle-search
6
lxml
6
omero-web
6
snowflake-connector-python
6
graphite-web
6
mage-ai
6
codechecker
6
Moin
6
torchserve
6
keras
6
torch
6
apache-airflow-providers-apache-hive
6
langflow
6
dtale
6
mailman
6
Mezzanine
6
Jinja2
6
ansible-core
6
OpenEXR
6
feedparser
5
grpc
5
onnx
5
werkzeug
5
jupyterhub
5
langchain-experimental
5
ait-core
5
grpcio
5
python-gnupg
5
oauthenticator
5
mitmproxy
5
nltk
5
bleach
5
pretix
5
composio-core
5
lmdb
5
Weblate
5
keylime
5
esphome
5
saleor
5
mayan-edms
5
fschat
5
Werkzeug
5
paramiko
4
bottle
4
pytorch-lightning
4
reportlab
4
weblate
4
qutebrowser
4
homeassistant
4
pywasm3
4
httpie
4
RestrictedPython
4
starlette
4
wasmtime
4
streampipes
4
FreeTAKServer-UI
4
GitPython
4
dbt-core
4
flask
4
aws-iot-device-sdk-v2
4
indy-node
4
apache-submarine
4
MaterialX
4
Flask-Security-Too
4
Keystone
4
PyPDF2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
skops
4
buildbot
4
awsiotsdk
4
jinja2
4
xml2rfc
4
setuptools
4
barbican
4
flask-appbuilder
4
streamlit
4
Scrapy
4
koji
4
markdown2
4
InvokeAI
4
Nova
4
Pygments
4
pandasai
4
tripleo-heat-templates
4
jupyterlab
4
jwcrypto
4
ray
4
flask-cors
4
apache-iotdb
4
frappe
4
django-helpdesk
4
nvflare
4
Radicale
4
scikit-learn
3
plone.app.event
3
sosreport
3