python-django vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the python-django package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2024-45231

*
  • M
Resource Exhaustion

*
  • L
Directory Traversal

*
  • M
Improper Validation of Specified Type of Input

*
  • M
Improper Validation of Specified Type of Input

*
  • L
Information Exposure

*
  • M
Resource Exhaustion

*
  • L
Information Exposure

*
  • L
Directory Traversal

*
  • M
Improper Validation of Specified Type of Input

*
  • L
SQL Injection

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
CVE-2024-24680

*
  • M
CVE-2024-24680

*
  • M
Improper Input Validation

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • L
Improper Input Validation

*
  • M
Cross-site Scripting (XSS)

<0:1.8.14-1.el7ost
  • M
Cross-site Scripting (XSS)

<0:1.8.14-1.el7ost
  • M
Covert Timing Channel

<0:1.8.11-1.el7ost
  • M
Open Redirect

<0:1.8.11-1.el7ost
  • M
Allocation of Resources Without Limits or Throttling

<0:1.8.4-1.el7
  • M
Information Exposure

<0:1.8.7-1.el7
  • M
CVE-2013-6668

<0:1.6.11-5.el7sat
  • M
Information Exposure

<0:1.6.11-5.el7sat
  • M
Improper Input Validation

<0:1.6.11-5.el7sat
  • M
Cross-site Request Forgery (CSRF)

<0:1.8.15-1.el7ost
  • M
Cross-site Request Forgery (CSRF)

<0:1.8.15-1.el7ost
  • M
Cross-site Request Forgery (CSRF)

<0:1.8.15-1.el7ost
  • L
Resource Injection

*
  • L
Resource Injection

*
  • L
Resource Injection

*
  • L
Resource Injection

*
  • L
Resource Injection

*
  • L
Resource Injection

*
  • L
Resource Injection

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Open Redirect

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Open Redirect

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

<0:1.8.19-1.el7ost
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • L
Access Restriction Bypass

*
  • L
Access Restriction Bypass

*
  • L
Access Restriction Bypass

*
  • L
Access Restriction Bypass

*
  • L
Access Restriction Bypass

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

<0:1.8.18-1.el7ost
  • M
Cross-site Scripting (XSS)

<0:1.8.18-1.el7ost
  • M
Cross-site Scripting (XSS)

<0:1.8.18-1.el7ost
  • M
Cross-site Scripting (XSS)

<0:1.8.18-1.el7ost
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • L
Cross-site Scripting (XSS)

*
  • L
Cross-site Scripting (XSS)

*
  • L
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
SQL Injection

*
  • M
SQL Injection

*
  • M
SQL Injection

*
  • L
SQL Injection

*
  • M
SQL Injection

*
  • H
Improper Input Validation

*
  • H
Improper Input Validation

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improperly Implemented Security Check for Standard

*
  • M
Improperly Implemented Security Check for Standard

*
  • M
Improperly Implemented Security Check for Standard

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • L
SQL Injection

*
  • H
SQL Injection

*
  • H
SQL Injection

*
  • L
SQL Injection

*
  • L
SQL Injection

*
  • M
Improper Authorization

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Incorrect Default Permissions

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • L
Improper Input Validation

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • L
Authentication Bypass

*
  • H
SQL Injection

*
  • H
SQL Injection

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • L
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Improper Cross-boundary Removal of Sensitive Data

*
  • M
Improper Cross-boundary Removal of Sensitive Data

*
  • M
Improper Cross-boundary Removal of Sensitive Data

*
  • M
Improper Cross-boundary Removal of Sensitive Data

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Directory Traversal

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Resource Exhaustion

*
  • M
Omission of Security-relevant Information

<0:1.6.11-5.el7sat
  • M
SQL Injection

*
  • M
SQL Injection

*
  • M
Resource Exhaustion

<0:1.6.11-5.el7sat
  • M
HTTP Request Smuggling

*
  • M
HTTP Request Smuggling

*
  • L
HTTP Request Smuggling

*
  • L
HTTP Request Smuggling

*
  • M
HTTP Request Smuggling

*
  • M
Access Restriction Bypass

<0:1.6.11-5.el7sat
  • M
Improper Data Handling

<0:1.6.11-5.el7sat
  • M
Improper Data Handling

<0:1.6.11-5.el7sat
  • M
Algorithmic Complexity

<0:1.6.11-5.el7sat