django vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-5766MediumDjango: Django has an Improper Handling of Length Parameter InconsistencyCVE-2026-6907LowDjango: Django Uses Cache Containing Sensitive InformationCVE-2026-35192LowDjango: Django Uses Persistent Cookies Containing Sensitive Information CVE-2026-4277LowDjango: Django vulnerable to privilege abuse in GenericInlineModelAdminCVE-2026-3902HighDjango: Django vulnerable to ASGI header spoofing via underscore/hyphen conflationCVE-2026-4292LowDjango: Django vulnerable to privilege abuse in ModelAdmin.list_editableCVE-2026-33034HighDjango: Django: SGI requests with a missing or understated `Content-Length` header could bypass the…CVE-2026-33033MediumDjango: Django has potential DoS via MultiPartParser through crafted multipart uploadsCVE-2026-25673HighDjango: Django vulnerable to Uncontrolled Resource ConsumptionCVE-2026-25674LowDjango: Django has a Race Condition vulnerabilityCVE-2026-1312MediumDjango: Django has an SQL Injection issueCVE-2026-1287HighDjango: Django has an SQL Injection issueCVE-2026-1207HighDjango: Django has an SQL Injection issueCVE-2026-1285LowDjango: Django has Inefficient Algorithmic ComplexityCVE-2025-14550LowDjango: Django has Inefficient Algorithmic ComplexityCVE-2025-13473LowDjango: Django has Observable Timing DiscrepancyCVE-2025-64460MediumDjango: Django is vulnerable to DoS via XML serializer text extractionCVE-2025-13372MediumDjango: Django is vulnerable to SQL injection in column aliasesCVE-2025-64458Highdjango: Django has a denial-of-service vulnerability in HttpResponseRedirect and…CVE-2025-64459Criticaldjango: Django vulnerable to SQL injection via _connector keyword argument in QuerySet and Q objects.CVE-2025-59682Lowdjango: Django vulnerable to partial directory traversal via archivesCVE-2025-59681Highdjango: Django vulnerable to SQL injection in column aliasesCVE-2025-57833HighDjango: Django is subject to SQL injection through its column aliasesCVE-2025-48432MediumDjango: Django Improper Output Neutralization for Logs vulnerabilityCVE-2025-32873MediumDjango: Django has a denial-of-service possibility in strip_tags()

Stop the waste.
Protect your environment with Kodem.