Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:pypi/django@2.1.2

Type pypi

Namespace

Name django

Version 2.1.2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 2.1.6

Latest_non_vulnerable_version 6.0.5

Affected_by_vulnerabilities

url VCID-3gvv-5jbs-cfc1

vulnerability_id VCID-3gvv-5jbs-cfc1

summary privilege escalation

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19118

reference_id

reference_type

scores

value	0.00354
scoring_system	epss
scoring_elements	0.57971
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19118

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-hvmf-r92r-27hr
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-hvmf-r92r-27hr

reference_url	https://groups.google.com/forum/#!topic/django-announce/GjGqDvtNmWQ
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/GjGqDvtNmWQ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6R4HD22PVEVQ45H2JA2NXH443AYJOPL5/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6R4HD22PVEVQ45H2JA2NXH443AYJOPL5/

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://security.netapp.com/advisory/ntap-20191217-0003/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20191217-0003/

reference_url	https://www.djangoproject.com/weblog/2019/dec/02/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/dec/02/security-releases/

reference_url	http://www.openwall.com/lists/oss-security/2019/12/02/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2019/12/02/1

reference_url

https://security.archlinux.org/AVG-1070

reference_id

AVG-1070

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1070

fixed_packages

url pkg:pypi/django@2.1.15

purl pkg:pypi/django@2.1.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hzcv-euwq-eqeg

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.15

url pkg:pypi/django@2.2.8

purl pkg:pypi/django@2.2.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.8

aliases CVE-2019-19118, GHSA-hvmf-r92r-27hr, PYSEC-2019-15

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3gvv-5jbs-cfc1

url VCID-bxu2-wqcg-1ueh

vulnerability_id VCID-bxu2-wqcg-1ueh

summary cross-site scripting

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-12308

reference_id

reference_type

scores

value	0.01603
scoring_system	epss
scoring_elements	0.8203
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-12308

reference_url	https://docs.djangoproject.com/en/dev/releases/1.11.21
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/1.11.21

reference_url	https://docs.djangoproject.com/en/dev/releases/1.11.21/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/1.11.21/

reference_url	https://docs.djangoproject.com/en/dev/releases/2.1.9
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/2.1.9

reference_url	https://docs.djangoproject.com/en/dev/releases/2.1.9/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/2.1.9/

reference_url	https://docs.djangoproject.com/en/dev/releases/2.2.2
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/2.2.2

reference_url	https://docs.djangoproject.com/en/dev/releases/2.2.2/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/2.2.2/

reference_url	https://docs.djangoproject.com/en/dev/releases/security
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-7rp2-fm2h-wchj
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-7rp2-fm2h-wchj

reference_url	https://github.com/django/django
reference_id
reference_type
scores
url	https://github.com/django/django

reference_url	https://github.com/django/django/commit/09186a13d975de6d049f8b3e05484f66b01ece62
reference_id
reference_type
scores
url	https://github.com/django/django/commit/09186a13d975de6d049f8b3e05484f66b01ece62

reference_url	https://github.com/django/django/commit/afddabf8428ddc89a332f7a78d0d21eaf2b5a673
reference_id
reference_type
scores
url	https://github.com/django/django/commit/afddabf8428ddc89a332f7a78d0d21eaf2b5a673

reference_url	https://github.com/django/django/commit/c238701859a52d584f349cce15d56c8e8137c52b
reference_id
reference_type
scores
url	https://github.com/django/django/commit/c238701859a52d584f349cce15d56c8e8137c52b

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-79.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-79.yaml

reference_url	https://groups.google.com/forum/#!topic/django-announce/GEbHU7YoVz8
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/GEbHU7YoVz8

reference_url	https://lists.debian.org/debian-lts-announce/2019/06/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2019/06/msg00001.html

reference_url	https://lists.debian.org/debian-lts-announce/2019/07/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2019/07/msg00001.html

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/USYRARSYB7PE3S2ZQO7PZNWMH7RPGL5G
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/USYRARSYB7PE3S2ZQO7PZNWMH7RPGL5G

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/USYRARSYB7PE3S2ZQO7PZNWMH7RPGL5G/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/USYRARSYB7PE3S2ZQO7PZNWMH7RPGL5G/

reference_url	https://seclists.org/bugtraq/2019/Jul/10
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Jul/10

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://usn.ubuntu.com/4043-1
reference_id
reference_type
scores
url	https://usn.ubuntu.com/4043-1

reference_url	https://usn.ubuntu.com/4043-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/4043-1/

reference_url	https://www.debian.org/security/2019/dsa-4476
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4476

reference_url	https://www.djangoproject.com/weblog/2019/jun/03/security-releases
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jun/03/security-releases

reference_url	https://www.djangoproject.com/weblog/2019/jun/03/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jun/03/security-releases/

reference_url	http://www.openwall.com/lists/oss-security/2019/06/03/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2019/06/03/2

reference_url	http://www.securityfocus.com/bid/108559
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/108559

reference_url	https://security.archlinux.org/ASA-201906-2
reference_id	ASA-201906-2
reference_type
scores
url	https://security.archlinux.org/ASA-201906-2

reference_url

https://security.archlinux.org/AVG-969

reference_id

AVG-969

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-969

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-12308
reference_id	CVE-2019-12308
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-12308

fixed_packages

url pkg:pypi/django@2.1.9

purl pkg:pypi/django@2.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-ypwa-2rh9-gyex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.9

url pkg:pypi/django@2.2.2

purl pkg:pypi/django@2.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

vulnerability	VCID-ypwa-2rh9-gyex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.2

aliases CVE-2019-12308, GHSA-7rp2-fm2h-wchj, PYSEC-2019-79

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bxu2-wqcg-1ueh

url VCID-evu1-efcj-gfc5

vulnerability_id VCID-evu1-efcj-gfc5

summary multiple issues

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14235

reference_id

reference_type

scores

value	0.06773
scoring_system	epss
scoring_elements	0.91447
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14235

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-v9qg-3j8p-r63v
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-v9qg-3j8p-r63v

reference_url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/

reference_url	https://seclists.org/bugtraq/2019/Aug/15
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Aug/15

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://security.netapp.com/advisory/ntap-20190828-0002/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190828-0002/

reference_url	https://www.debian.org/security/2019/dsa-4498
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4498

reference_url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/

reference_url	https://security.archlinux.org/ASA-201908-2
reference_id	ASA-201908-2
reference_type
scores
url	https://security.archlinux.org/ASA-201908-2

reference_url

https://security.archlinux.org/AVG-1015

reference_id

AVG-1015

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1015

fixed_packages

url pkg:pypi/django@2.1.11

purl pkg:pypi/django@2.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-hzcv-euwq-eqeg

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.11

url pkg:pypi/django@2.2.4

purl pkg:pypi/django@2.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.4

aliases CVE-2019-14235, GHSA-v9qg-3j8p-r63v, PYSEC-2019-14

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-evu1-efcj-gfc5

url VCID-hzcv-euwq-eqeg

vulnerability_id VCID-hzcv-euwq-eqeg

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-33203

reference_id

reference_type

scores

value	0.00327
scoring_system	epss
scoring_elements	0.5585
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-33203

reference_url	https://docs.djangoproject.com/en/3.2/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/3.2/releases/security/

reference_url	https://github.com/advisories/GHSA-68w8-qjq3-2gfm
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-68w8-qjq3-2gfm

reference_url	https://groups.google.com/forum/#!forum/django-announce
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!forum/django-announce

reference_url	https://www.djangoproject.com/weblog/2021/jun/02/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2021/jun/02/security-releases/

reference_url	https://security.archlinux.org/ASA-202106-41
reference_id	ASA-202106-41
reference_type
scores
url	https://security.archlinux.org/ASA-202106-41

reference_url

https://security.archlinux.org/AVG-2026

reference_id

AVG-2026

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2026

fixed_packages

url pkg:pypi/django@2.2.24

purl pkg:pypi/django@2.2.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-vyzr-dkz3-vfg6

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.24

url pkg:pypi/django@3.1.12

purl pkg:pypi/django@3.1.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-zvet-h29t-tub8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.12

url pkg:pypi/django@3.2.4

purl pkg:pypi/django@3.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-5k3f-9smv-8bev

vulnerability	VCID-6bct-bfhb-xugt

vulnerability	VCID-7u6e-a3ng-fude

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-bjn5-qpmt-qffx

vulnerability	VCID-ctk2-ykg7-h7ag

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-e2p6-m8gu-jbfu

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fwkd-bq8u-9kg8

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-kmv2-339j-8ugc

vulnerability	VCID-nyy8-t17r-syex

vulnerability	VCID-qg2s-fuw3-nbda

vulnerability	VCID-rn9d-fd73-3kb9

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-x4s4-qav9-xbet

vulnerability	VCID-zvet-h29t-tub8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.4

aliases CVE-2021-33203, GHSA-68w8-qjq3-2gfm, PYSEC-2021-98

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hzcv-euwq-eqeg

url VCID-n9cz-g44c-4fht

vulnerability_id VCID-n9cz-g44c-4fht

summary multiple issues

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14233

reference_id

reference_type

scores

value	0.06773
scoring_system	epss
scoring_elements	0.91447
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14233

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-h5jv-4p7w-64jg
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-h5jv-4p7w-64jg

reference_url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/

reference_url	https://seclists.org/bugtraq/2019/Aug/15
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Aug/15

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://security.netapp.com/advisory/ntap-20190828-0002/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190828-0002/

reference_url	https://www.debian.org/security/2019/dsa-4498
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4498

reference_url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/

reference_url	https://security.archlinux.org/ASA-201908-2
reference_id	ASA-201908-2
reference_type
scores
url	https://security.archlinux.org/ASA-201908-2

reference_url

https://security.archlinux.org/AVG-1015

reference_id

AVG-1015

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1015

fixed_packages

url pkg:pypi/django@2.1.11

purl pkg:pypi/django@2.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-hzcv-euwq-eqeg

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.11

url pkg:pypi/django@2.2.4

purl pkg:pypi/django@2.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.4

aliases CVE-2019-14233, GHSA-h5jv-4p7w-64jg, PYSEC-2019-12

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n9cz-g44c-4fht

url VCID-v8hg-78p1-87bh

vulnerability_id VCID-v8hg-78p1-87bh

summary multiple issues

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14234

reference_id

reference_type

scores

value	0.29723
scoring_system	epss
scoring_elements	0.96712
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14234

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-6r97-cj55-9hrq
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-6r97-cj55-9hrq

reference_url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/

reference_url	https://seclists.org/bugtraq/2019/Aug/15
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Aug/15

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://security.netapp.com/advisory/ntap-20190828-0002/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190828-0002/

reference_url	https://www.debian.org/security/2019/dsa-4498
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4498

reference_url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/

reference_url	https://security.archlinux.org/ASA-201908-2
reference_id	ASA-201908-2
reference_type
scores
url	https://security.archlinux.org/ASA-201908-2

reference_url

https://security.archlinux.org/AVG-1015

reference_id

AVG-1015

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1015

fixed_packages

url pkg:pypi/django@2.1.11

purl pkg:pypi/django@2.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-hzcv-euwq-eqeg

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.11

url pkg:pypi/django@2.2.4

purl pkg:pypi/django@2.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.4

aliases CVE-2019-14234, GHSA-6r97-cj55-9hrq, PYSEC-2019-13

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v8hg-78p1-87bh

url VCID-wj2g-v6dz-2yeq

vulnerability_id VCID-wj2g-v6dz-2yeq

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-6975

reference_id

reference_type

scores

value	0.07682
scoring_system	epss
scoring_elements	0.9203
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-6975

reference_url	https://docs.djangoproject.com/en/dev/releases/security
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-wh4h-v3f2-r2pp
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-wh4h-v3f2-r2pp

reference_url	https://github.com/django/django
reference_id
reference_type
scores
url	https://github.com/django/django

reference_url	https://github.com/django/django/commit/0bbb560183fabf0533289700845dafa94951f227
reference_id
reference_type
scores
url	https://github.com/django/django/commit/0bbb560183fabf0533289700845dafa94951f227

reference_url	https://github.com/django/django/commit/1f42f82566c9d2d73aff1c42790d6b1b243f7676
reference_id
reference_type
scores
url	https://github.com/django/django/commit/1f42f82566c9d2d73aff1c42790d6b1b243f7676

reference_url	https://github.com/django/django/commit/40cd19055773705301c3428ed5e08a036d2091f3
reference_id
reference_type
scores
url	https://github.com/django/django/commit/40cd19055773705301c3428ed5e08a036d2091f3

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-18.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-18.yaml

reference_url	https://groups.google.com/forum/#!topic/django-announce/WTwEAprR0IQ
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/WTwEAprR0IQ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/66WMXHGBXD7GSM3PEXVCMCAGLMQYHZCU
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/66WMXHGBXD7GSM3PEXVCMCAGLMQYHZCU

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/66WMXHGBXD7GSM3PEXVCMCAGLMQYHZCU/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/66WMXHGBXD7GSM3PEXVCMCAGLMQYHZCU/

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ/

reference_url	https://seclists.org/bugtraq/2019/Jul/10
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Jul/10

reference_url	https://usn.ubuntu.com/3890-1
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3890-1

reference_url	https://usn.ubuntu.com/3890-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3890-1/

reference_url	https://web.archive.org/web/20200227084713/http://www.securityfocus.com/bid/106964
reference_id
reference_type
scores
url	https://web.archive.org/web/20200227084713/http://www.securityfocus.com/bid/106964

reference_url	https://www.debian.org/security/2019/dsa-4476
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4476

reference_url	https://www.djangoproject.com/weblog/2019/feb/11/security-releases
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/feb/11/security-releases

reference_url	https://www.djangoproject.com/weblog/2019/feb/11/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/feb/11/security-releases/

reference_url	https://www.openwall.com/lists/oss-security/2019/02/11/1
reference_id
reference_type
scores
url	https://www.openwall.com/lists/oss-security/2019/02/11/1

reference_url	http://www.securityfocus.com/bid/106964
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/106964

reference_url	https://security.archlinux.org/ASA-201902-14
reference_id	ASA-201902-14
reference_type
scores
url	https://security.archlinux.org/ASA-201902-14

reference_url

https://security.archlinux.org/AVG-881

reference_id

AVG-881

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-881

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-6975
reference_id	CVE-2019-6975
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-6975

fixed_packages

url	pkg:pypi/django@2.1.6
purl	pkg:pypi/django@2.1.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.6

url pkg:pypi/django@2.1.7

purl pkg:pypi/django@2.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-bxu2-wqcg-1ueh

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-ypwa-2rh9-gyex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.7

aliases CVE-2019-6975, GHSA-wh4h-v3f2-r2pp, PYSEC-2019-18

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wj2g-v6dz-2yeq

url VCID-wsx7-6bfa-pugr

vulnerability_id VCID-wsx7-6bfa-pugr

summary content spoofing

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3498

reference_id

reference_type

scores

value	0.00522
scoring_system	epss
scoring_elements	0.67199
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3498

reference_url	https://docs.djangoproject.com/en/dev/releases/security
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-337x-4q8g-prc5
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-337x-4q8g-prc5

reference_url	https://github.com/django/django
reference_id
reference_type
scores
url	https://github.com/django/django

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-17.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-17.yaml

reference_url	https://groups.google.com/forum/#!topic/django-announce/VYU7xQQTEPQ
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/VYU7xQQTEPQ

reference_url	https://lists.debian.org/debian-lts-announce/2019/01/msg00005.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2019/01/msg00005.html

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVXDOVCXLD74SHR2BENGCE2OOYYYWJHZ/

reference_url	https://usn.ubuntu.com/3851-1
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3851-1

reference_url	https://usn.ubuntu.com/3851-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/3851-1/

reference_url	https://web.archive.org/web/20200227094237/http://www.securityfocus.com/bid/106453
reference_id
reference_type
scores
url	https://web.archive.org/web/20200227094237/http://www.securityfocus.com/bid/106453

reference_url	https://www.debian.org/security/2019/dsa-4363
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4363

reference_url	https://www.djangoproject.com/weblog/2019/jan/04/security-releases
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jan/04/security-releases

reference_url	https://www.djangoproject.com/weblog/2019/jan/04/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jan/04/security-releases/

reference_url	http://www.securityfocus.com/bid/106453
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/106453

reference_url	https://security.archlinux.org/ASA-201901-6
reference_id	ASA-201901-6
reference_type
scores
url	https://security.archlinux.org/ASA-201901-6

reference_url

https://security.archlinux.org/AVG-839

reference_id

AVG-839

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-839

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-3498
reference_id	CVE-2019-3498
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-3498

fixed_packages

url pkg:pypi/django@2.1.5

purl pkg:pypi/django@2.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-bxu2-wqcg-1ueh

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-wj2g-v6dz-2yeq

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-ypwa-2rh9-gyex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.5

aliases CVE-2019-3498, GHSA-337x-4q8g-prc5, PYSEC-2019-17

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wsx7-6bfa-pugr

url VCID-x2hp-rmcn-gbah

vulnerability_id VCID-x2hp-rmcn-gbah

summary multiple issues

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14232

reference_id

reference_type

scores

value	0.0297
scoring_system	epss
scoring_elements	0.86745
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14232

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-c4qh-4vgv-qc6g
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-c4qh-4vgv-qc6g

reference_url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/jIoju2-KLDs

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STVX7X7IDWAH5SKE6MBMY3TEI6ZODBTK/

reference_url	https://seclists.org/bugtraq/2019/Aug/15
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Aug/15

reference_url	https://security.gentoo.org/glsa/202004-17
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202004-17

reference_url	https://security.netapp.com/advisory/ntap-20190828-0002/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190828-0002/

reference_url	https://www.debian.org/security/2019/dsa-4498
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4498

reference_url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/aug/01/security-releases/

reference_url	https://security.archlinux.org/ASA-201908-2
reference_id	ASA-201908-2
reference_type
scores
url	https://security.archlinux.org/ASA-201908-2

reference_url

https://security.archlinux.org/AVG-1015

reference_id

AVG-1015

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1015

fixed_packages

url pkg:pypi/django@2.1.11

purl pkg:pypi/django@2.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-hzcv-euwq-eqeg

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.11

url pkg:pypi/django@2.2.4

purl pkg:pypi/django@2.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.4

aliases CVE-2019-14232, GHSA-c4qh-4vgv-qc6g, PYSEC-2019-11

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x2hp-rmcn-gbah

url VCID-ypwa-2rh9-gyex

vulnerability_id VCID-ypwa-2rh9-gyex

summary silent downgrade

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00006.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00025.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-12781

reference_id

reference_type

scores

value	0.04284
scoring_system	epss
scoring_elements	0.89026
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-12781

reference_url	https://docs.djangoproject.com/en/dev/releases/security
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security

reference_url	https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
url	https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://github.com/advisories/GHSA-6c7v-2f49-8h26
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-6c7v-2f49-8h26

reference_url	https://github.com/django/django
reference_id
reference_type
scores
url	https://github.com/django/django

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-10.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2019-10.yaml

reference_url	https://groups.google.com/forum/#!topic/django-announce/Is4kLY9ZcZQ
reference_id
reference_type
scores
url	https://groups.google.com/forum/#!topic/django-announce/Is4kLY9ZcZQ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5VXXWIOQGXOB7JCGJ3CVUW673LDHKEYL
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5VXXWIOQGXOB7JCGJ3CVUW673LDHKEYL

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5VXXWIOQGXOB7JCGJ3CVUW673LDHKEYL/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5VXXWIOQGXOB7JCGJ3CVUW673LDHKEYL/

reference_url	https://seclists.org/bugtraq/2019/Jul/10
reference_id
reference_type
scores
url	https://seclists.org/bugtraq/2019/Jul/10

reference_url	https://security.netapp.com/advisory/ntap-20190705-0002
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190705-0002

reference_url	https://security.netapp.com/advisory/ntap-20190705-0002/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190705-0002/

reference_url	https://usn.ubuntu.com/4043-1
reference_id
reference_type
scores
url	https://usn.ubuntu.com/4043-1

reference_url	https://usn.ubuntu.com/4043-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/4043-1/

reference_url	https://www.debian.org/security/2019/dsa-4476
reference_id
reference_type
scores
url	https://www.debian.org/security/2019/dsa-4476

reference_url	https://www.djangoproject.com/weblog/2019/jul/01/security-releases
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jul/01/security-releases

reference_url	https://www.djangoproject.com/weblog/2019/jul/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2019/jul/01/security-releases/

reference_url	http://www.openwall.com/lists/oss-security/2019/07/01/3
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2019/07/01/3

reference_url	http://www.securityfocus.com/bid/109018
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/109018

reference_url	https://security.archlinux.org/ASA-201907-2
reference_id	ASA-201907-2
reference_type
scores
url	https://security.archlinux.org/ASA-201907-2

reference_url

https://security.archlinux.org/AVG-1000

reference_id

AVG-1000

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1000

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-12781
reference_id	CVE-2019-12781
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-12781

fixed_packages

url pkg:pypi/django@2.1.10

purl pkg:pypi/django@2.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-x2hp-rmcn-gbah

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.10

url pkg:pypi/django@2.2.3

purl pkg:pypi/django@2.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2bh9-k4at-r7hz

vulnerability	VCID-2f2p-wfbs-73hz

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-5a2y-2m62-1qfa

vulnerability	VCID-7b47-vsfh-y3gh

vulnerability	VCID-81q1-gytk-2uaq

vulnerability	VCID-9hp4-hn21-zkg8

vulnerability	VCID-b81v-3drw-xudf

vulnerability	VCID-bbxx-48nj-pqcd

vulnerability	VCID-dcv2-gx5a-pfe2

vulnerability	VCID-dqkn-1888-y3er

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-fc6y-y2b1-v3d5

vulnerability	VCID-fynq-usj6-rfd3

vulnerability	VCID-gxju-xjh2-z7bn

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-jzbk-uswz-8ucg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-nxbs-37dx-rbbh

vulnerability	VCID-punr-dfy5-v3g1

vulnerability	VCID-u53d-8afk-c3gq

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-vyzr-dkz3-vfg6

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-xb3c-6rew-z3ba

vulnerability	VCID-xu9t-qtjz-bud8

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.3

aliases CVE-2019-12781, GHSA-6c7v-2f49-8h26, PYSEC-2019-10

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ypwa-2rh9-gyex

Fixing_vulnerabilities

url VCID-vh6g-zgd1-xkbq

vulnerability_id VCID-vh6g-zgd1-xkbq

summary information disclosure

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16984

reference_id

reference_type

scores

value	0.00684
scoring_system	epss
scoring_elements	0.71988
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16984

reference_url	https://github.com/advisories/GHSA-6mx3-3vqg-hpp2
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-6mx3-3vqg-hpp2

reference_url	https://github.com/django/django
reference_id
reference_type
scores
url	https://github.com/django/django

reference_url	https://github.com/django/django/commit/bf39978a53f117ca02e9a0c78b76664a41a54745
reference_id
reference_type
scores
url	https://github.com/django/django/commit/bf39978a53f117ca02e9a0c78b76664a41a54745

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2018-3.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2018-3.yaml

reference_url	https://security.netapp.com/advisory/ntap-20190502-0009
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190502-0009

reference_url	https://security.netapp.com/advisory/ntap-20190502-0009/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20190502-0009/

reference_url	https://web.archive.org/web/20200517123022/http://www.securitytracker.com/id/1041749
reference_id
reference_type
scores
url	https://web.archive.org/web/20200517123022/http://www.securitytracker.com/id/1041749

reference_url	https://www.djangoproject.com/weblog/2018/oct/01/security-release
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2018/oct/01/security-release

reference_url	https://www.djangoproject.com/weblog/2018/oct/01/security-release/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2018/oct/01/security-release/

reference_url	http://www.securitytracker.com/id/1041749
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1041749

reference_url	https://security.archlinux.org/ASA-201810-5
reference_id	ASA-201810-5
reference_type
scores
url	https://security.archlinux.org/ASA-201810-5

reference_url

https://security.archlinux.org/AVG-773

reference_id

AVG-773

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-773

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2018-16984
reference_id	CVE-2018-16984
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2018-16984

fixed_packages

url pkg:pypi/django@2.1.2

purl pkg:pypi/django@2.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3gvv-5jbs-cfc1

vulnerability	VCID-bxu2-wqcg-1ueh

vulnerability	VCID-evu1-efcj-gfc5

vulnerability	VCID-hzcv-euwq-eqeg

vulnerability	VCID-n9cz-g44c-4fht

vulnerability	VCID-v8hg-78p1-87bh

vulnerability	VCID-wj2g-v6dz-2yeq

vulnerability	VCID-wsx7-6bfa-pugr

vulnerability	VCID-x2hp-rmcn-gbah

vulnerability	VCID-ypwa-2rh9-gyex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.2

aliases CVE-2018-16984, GHSA-6mx3-3vqg-hpp2, PYSEC-2018-3

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vh6g-zgd1-xkbq

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.1.2

Package Instance