django-ca@1.11.0 vulnerabilities
A Django app providing a TLS certificate authority.
-
latest version
1.28.0
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
2 months ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the django-ca package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
django-ca is a tool to manage TLS certificate authorities and easily issue and revoke certificates. Affected versions of this package are vulnerable to Denial of Service (DoS) via large response bodies when validating ACME challenges, which can lead to large files in memory. How to fix Denial of Service (DoS)? Upgrade |
[,1.19.0)
|
django-ca is a tool to manage TLS certificate authorities and easily issue and revoke certificates. Affected versions of this package are vulnerable to Insecure Defaults. Insecure default settings could lead to CSRF. The fix adds How to fix Insecure Defaults? Upgrade |
[,1.17.0)
|