django-autocomplete-light@2.2.0rc5 vulnerabilities

Fresh autocompletes for Django

latest version

3.11.0
latest non vulnerable version

3.11.0
first published

12 years ago
latest version published

3 months ago
licenses detected
- MIT
  [0,)
View django-autocomplete-light package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the django-autocomplete-light package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L Information Exposure django-autocomplete-light is a Fresh autocompletes for Django Affected versions of this package are vulnerable to Information Exposure which allows a malicious user to see choices from `choice_for_request()` by querying the autocomplete directly. How to fix Information Exposure? Upgrade `django-autocomplete-light` to version 2.3.0 or higher.	[,2.3.0)