django-json-widget@0.1.1 vulnerabilities

Django json widget is an alternative widget that makes it easy to edit the jsonfield field of django.

latest version

2.0.1
latest non vulnerable version

2.0.1
first published

7 years ago
latest version published

2 months ago
licenses detected
- MIT
  [0,)
View django-json-widget package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the django-json-widget package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Improper Input Validation django-json-widget is a Django json widget is an alternative widget that makes it easy to edit the jsonfield field of django. Affected versions of this package are vulnerable to Improper Input Validation due to not preventing HTML injection during the JSON handling. How to fix Improper Input Validation? Upgrade `django-json-widget` to version 2.0.0 or higher.	[,2.0.0)