django vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2019-14234CriticalDjango: SQL Injection in DjangoCVE-2019-14233HighDjango: Django Denial-of-service in strip_tags()CVE-2019-14235HighDjango: Uncontrolled Recursion in DjangoCVE-2019-14232HighDjango: Django Denial-of-service in django.utils.text.TruncatorCVE-2015-5143Highdjango: Django Denial-of-service by filling session storeCVE-2019-12781MediumDjango: Django Incorrect HTTP detection with reverse-proxy connecting via HTTPSCVE-2019-12308MediumDjango: Django Cross-site Scripting in AdminURLFieldWidgetCVE-2019-11358Mediumjquery-rails: XSS in jQuery as used in Drupal, Backdrop CMS, and other productsCVE-2019-6975HighDjango: Uncontrolled Memory Consumption in DjangoCVE-2019-3498HighDjango: Improper Input Validation in DjangoCVE-2017-12794MediumDjango: Django vulnerable to XSS on 500 pagesCVE-2017-7233MediumDjango: Django open redirect and possible XSS attack via user-supplied numeric redirect URLsCVE-2017-7234Mediumdjango: Django open redirectCVE-2018-7536MediumDjango: Django denial-of-service possibility in urlize and urlizetrunc template filtersCVE-2018-7537Lowdjango: Django Denial-of-service possibility in truncatechars_html and truncatewords_html template filtersCVE-2018-14574Mediumdjango: Django open redirectCVE-2018-6188Highdjango: Django vulnerable to information leakage in AuthenticationFormCVE-2018-16984Mediumdjango: Django allows unprivileged users to read the password hashes of arbitrary accountsCVE-2011-0697MediumDjango: Cross-site scripting in djangoCVE-2010-3082MediumDjango: Cross-site scripting in djangoCVE-2011-4136MediumDjango: Session manipulation in DjangoCVE-2011-0698CriticalDjango: Directory traversal in DjangoCVE-2010-4535Mediumdjango: Improper date handling in DjangoCVE-2010-4534Highdjango: Improper query string handling in DjangoCVE-2011-4137HighDjango: Denial of service in django

Stop the waste.
Protect your environment with Kodem.