Django vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-27556MediumDjango: Django Potential Denial of Service (DoS) on Windows CVE-2025-26699MediumDjango: Django vulnerable to Allocation of Resources Without Limits or ThrottlingCVE-2024-56374MediumDjango: Django has a potential denial-of-service vulnerability in IPv6 validationCVE-2024-53908HighDjango: Django SQL injection in HasKey(lhs, rhs) on OracleCVE-2024-53907MediumDjango: Django denial-of-service in django.utils.html.strip_tags()CVE-2024-45231MediumDjango: Django allows enumeration of user e-mail addressesCVE-2024-45230MediumDjango: Django vulnerable to denial-of-service attack via the urlize() and urlizetrunc() template filtersCVE-2024-42005CriticalDjango: Django SQL injection vulnerabilityCVE-2024-41989MediumDjango: Django memory consumption vulnerabilityCVE-2024-41990MediumDjango: Django vulnerable to a denial-of-service attackCVE-2024-41991MediumDjango: Django vulnerable to denial-of-service attackCVE-2024-39614HighDjango: Django vulnerable to Denial of ServiceCVE-2024-39330HighDjango: Django Path Traversal vulnerabilityCVE-2024-39329MediumDjango: Django vulnerable to user enumeration attackCVE-2024-38875HighDjango: Django vulnerable to Denial of ServiceCVE-2024-27351Mediumdjango: Regular expression denial-of-service in DjangoCVE-2024-24680Highdjango: Django denial-of-service attack in the intcomma template filterCVE-2023-43665HighDjango: Django Denial-of-service in django.utils.text.TruncatorCVE-2023-41164Mediumdjango: Django Denial of service vulnerability in django.utils.encoding.uri_to_iriCVE-2023-46695HighDjango: Django potential denial of service vulnerability in UsernameField on WindowsCVE-2023-36053HighDjango: Django has regular expression denial of service vulnerability in EmailValidator/URLValidatorCVE-2023-31047CriticalDjango: Django bypasses validation when using one form field to upload multiple filesCVE-2023-24580HighDjango: Resource exhaustion in DjangoCVE-2023-23969Highdjango: Django contains Uncontrolled Resource Consumption via cached headerCVE-2022-41323Highdjango: Django denial-of-service vulnerability in internationalized URLs

Stop the waste.
Protect your environment with Kodem.