Homepage

python-django vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the python-django package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Cross-site Scripting (XSS)

<1.7.11-1+deb8u9
  • M
Improper Certificate Validation

<1.7.11-1+deb8u9
  • C
Weak Password Recovery Mechanism for Forgotten Password

<1.7.11-1+deb8u8
  • H
Resource Exhaustion

<1.7.11-1+deb8u7
  • H
Resource Exhaustion

<1.7.11-1+deb8u7
  • M
Cleartext Transmission of Sensitive Information

<1.7.11-1+deb8u6
  • M
Cross-site Scripting (XSS)

<1.7.11-1+deb8u5
  • M
Improper Input Validation

<1.7.11-1+deb8u4
  • M
Incorrect Regular Expression

<1.7.11-1+deb8u3
  • M
Incorrect Regular Expression

<1.7.11-1+deb8u3
  • M
Open Redirect

<1.7.11-1+deb8u2
  • M
Open Redirect

<1.7.11-1+deb8u2
  • C
Use of Hard-coded Credentials

<1.7.11-1+deb8u2
  • H
Access Restriction Bypass

<1.7.11-1+deb8u2
  • H
Security Features

<1.7.11-1+deb8u1
  • M
Cross-site Scripting (XSS)

<1.7.7-1+deb8u5
  • L
Information Exposure

<1.7.7-1+deb8u4
  • H
Cross-site Scripting (XSS)

<1.7.7-1+deb8u4
  • M
Information Exposure

<1.7.7-1+deb8u3
  • M
Resource Management Errors

<1.7.7-1+deb8u2
  • M
Resource Management Errors

<1.7.7-1+deb8u2
  • H
Resource Management Errors

<1.7.7-1+deb8u1
  • M
Improper Input Validation

<1.7.7-1+deb8u1
  • M
Resource Management Errors

<1.7.7-1
  • M
Cross-site Scripting (XSS)

<1.7.7-1
  • M
Cross-site Scripting (XSS)

<1.7.6-1
  • M
Code

<1.7.1-1.1
  • M
Cross-site Scripting (XSS)

<1.7.1-1.1
  • M
Resource Management Errors

<1.7.1-1.1
  • M
Code

<1.7.1-1.1
  • M
Improper Authentication

<1.6.6-1
  • M
Improper Input Validation

<1.6.6-1
  • L
Access Restriction Bypass

<1.6.6-1
  • M
Resource Management Errors

<1.6.6-1
  • M
CVE-2014-1418

<1.6.5-1
  • M
Improper Input Validation

<1.6.5-1
  • C
Resource Management Errors

<1.6.3-1
  • M
Arbitrary Code Injection

<1.6.3-1
  • M
Access Restriction Bypass

<1.6.3-1
  • M
Cross-site Scripting (XSS)

<1.5.2-1
  • M
Cross-site Scripting (XSS)

<1.5.2-1
  • M
Improper Authentication

<1.5.4-1
  • M
Directory Traversal

<1.5.3-1
  • M
Numeric Errors

<1.4.4-1
  • M
Information Exposure

<1.4.4-1
  • M
Information Exposure

<1.4.4-1
  • M
Improper Input Validation

<1.4.2-1
  • M
Out-of-Bounds

<1.4.1-1
  • M
Improper Input Validation

<1.4.1-1
  • M
Cross-site Scripting (XSS)

<1.4.1-1
  • M
Cross-site Request Forgery (CSRF)

<1.3.1-1
  • M
Resource Management Errors

<1.3.1-1
  • M
Improper Input Validation

<1.3.1-1
  • M
Improper Input Validation

<1.3.1-1
  • M
Improper Input Validation

<1.3.1-1
  • M
Cross-site Request Forgery (CSRF)

<1.2.5-1
  • M
Cross-site Scripting (XSS)

<1.2.5-1
  • M
Access Restriction Bypass

<1.2.4-1
  • M
Improper Input Validation

<1.2.4-1
  • M
Cross-site Scripting (XSS)

<1.2.3-1
  • M
CVE-2009-3695

<1.1.1-1
  • M
Directory Traversal

<1.1-1
  • M
Cross-site Request Forgery (CSRF)

<1.0-1
  • M
Cross-site Scripting (XSS)

<0.96.2-1
  • M
Cross-site Request Forgery (CSRF)

<1.2.1
  • L
Resource Management Errors

<0.96-1.1
  • M
CVE-2007-0405

<0.95.1-1
  • H
CVE-2007-0404

<0.95.1-1