| 0 |
| url |
VCID-27gm-2u1q-skh1 |
| vulnerability_id |
VCID-27gm-2u1q-skh1 |
| summary |
security update |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-13254 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04713 |
| scoring_system |
epss |
| scoring_elements |
0.89654 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.04713 |
| scoring_system |
epss |
| scoring_elements |
0.89649 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.04713 |
| scoring_system |
epss |
| scoring_elements |
0.89614 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.04713 |
| scoring_system |
epss |
| scoring_elements |
0.89656 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-13254 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
| reference_url |
https://usn.ubuntu.com/4381-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4381-1 |
|
| 17 |
|
| 18 |
| reference_url |
https://usn.ubuntu.com/4381-2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4381-2 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
| reference_url |
https://github.com/advisories/GHSA-wpjr-j57x-wxfw |
| reference_id |
GHSA-wpjr-j57x-wxfw |
| reference_type |
|
| scores |
| 0 |
| value |
5.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-wpjr-j57x-wxfw |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.13 |
| purl |
pkg:pypi/django@2.2.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 3 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 4 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 5 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 6 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 7 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 10 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 11 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 12 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 13 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 14 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 15 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 16 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 17 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 18 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 19 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 20 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 21 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 22 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.13 |
|
| 1 |
| url |
pkg:pypi/django@3.0.7 |
| purl |
pkg:pypi/django@3.0.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 10 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 11 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 12 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 13 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.7 |
|
|
| aliases |
BIT-django-2020-13254, CVE-2020-13254, GHSA-wpjr-j57x-wxfw, PYSEC-2020-31
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-27gm-2u1q-skh1 |
|
| 1 |
| url |
VCID-2qu4-qayw-a7ec |
| vulnerability_id |
VCID-2qu4-qayw-a7ec |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-24583 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02869 |
| scoring_system |
epss |
| scoring_elements |
0.86643 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.02869 |
| scoring_system |
epss |
| scoring_elements |
0.8664 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.02869 |
| scoring_system |
epss |
| scoring_elements |
0.86583 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.02869 |
| scoring_system |
epss |
| scoring_elements |
0.86633 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-24583 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
| reference_url |
https://usn.ubuntu.com/4479-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4479-1 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.16 |
| purl |
pkg:pypi/django@2.2.16 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 8 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 9 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 10 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 13 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 14 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 15 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 16 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 17 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 18 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 19 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 20 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.16 |
|
| 1 |
| url |
pkg:pypi/django@3.0.10 |
| purl |
pkg:pypi/django@3.0.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 5 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 6 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 7 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 8 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 11 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 12 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 13 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.10 |
|
| 2 |
| url |
pkg:pypi/django@3.1.1 |
| purl |
pkg:pypi/django@3.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 9 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 10 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 11 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 12 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 13 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 14 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.1 |
|
|
| aliases |
BIT-django-2020-24583, CVE-2020-24583, GHSA-m6gj-h9gm-gw44, PYSEC-2020-33
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2qu4-qayw-a7ec |
|
| 2 |
| url |
VCID-2sve-8b9b-hud7 |
| vulnerability_id |
VCID-2sve-8b9b-hud7 |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-23833 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01058 |
| scoring_system |
epss |
| scoring_elements |
0.78107 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.01058 |
| scoring_system |
epss |
| scoring_elements |
0.78031 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.01058 |
| scoring_system |
epss |
| scoring_elements |
0.78098 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.01058 |
| scoring_system |
epss |
| scoring_elements |
0.78112 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-23833 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
| reference_url |
https://github.com/advisories/GHSA-6cw3-g6wv-c2xv |
| reference_id |
GHSA-6cw3-g6wv-c2xv |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-6cw3-g6wv-c2xv |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.12 |
| purl |
pkg:pypi/django@3.2.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 10 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 11 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 12 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 13 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 14 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 15 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 16 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 17 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 18 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.12 |
|
| 2 |
| url |
pkg:pypi/django@4.0.2 |
| purl |
pkg:pypi/django@4.0.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 8 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 9 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 10 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 11 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 12 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 13 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.2 |
|
|
| aliases |
BIT-django-2022-23833, CVE-2022-23833, GHSA-6cw3-g6wv-c2xv, PYSEC-2022-20
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2sve-8b9b-hud7 |
|
| 3 |
| url |
VCID-38w8-jbku-eugu |
| vulnerability_id |
VCID-38w8-jbku-eugu |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45452 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47296 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47282 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47141 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.47277 |
| published_at |
2026-06-14T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45452 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
| reference_url |
https://github.com/advisories/GHSA-jrh2-hc4r-7jwx |
| reference_id |
GHSA-jrh2-hc4r-7jwx |
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-jrh2-hc4r-7jwx |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.11 |
| purl |
pkg:pypi/django@3.2.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 10 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 11 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 12 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 13 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 14 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 17 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 18 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 19 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 20 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.11 |
|
| 2 |
| url |
pkg:pypi/django@4.0.1 |
| purl |
pkg:pypi/django@4.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 10 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 13 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.1 |
|
|
| aliases |
BIT-django-2021-45452, CVE-2021-45452, GHSA-jrh2-hc4r-7jwx, PYSEC-2022-3
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-38w8-jbku-eugu |
|
| 4 |
| url |
VCID-5zzj-9ez5-6ub1 |
| vulnerability_id |
VCID-5zzj-9ez5-6ub1 |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-32052 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01859 |
| scoring_system |
epss |
| scoring_elements |
0.83533 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.01859 |
| scoring_system |
epss |
| scoring_elements |
0.8353 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.01859 |
| scoring_system |
epss |
| scoring_elements |
0.83465 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.01859 |
| scoring_system |
epss |
| scoring_elements |
0.83525 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-32052 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/advisories/GHSA-qm57-vhq3-3fwf |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-qm57-vhq3-3fwf |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.22 |
| purl |
pkg:pypi/django@2.2.22 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 10 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 11 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 12 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 13 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 14 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 15 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.22 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@3.2.2 |
| purl |
pkg:pypi/django@3.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 7 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 8 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 9 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 10 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 11 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 12 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 13 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 14 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 15 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 16 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 17 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 18 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 19 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 20 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 21 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 22 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 23 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 24 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 25 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 26 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 27 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.2 |
|
|
| aliases |
BIT-django-2021-32052, CVE-2021-32052, GHSA-qm57-vhq3-3fwf, PYSEC-2021-8
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| url |
VCID-6uja-brvn-rufw |
| vulnerability_id |
VCID-6uja-brvn-rufw |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45115 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00414 |
| scoring_system |
epss |
| scoring_elements |
0.62055 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00414 |
| scoring_system |
epss |
| scoring_elements |
0.62168 |
| published_at |
2026-06-13T12:55:00Z |
|
| 2 |
| value |
0.00414 |
| scoring_system |
epss |
| scoring_elements |
0.62157 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.00414 |
| scoring_system |
epss |
| scoring_elements |
0.62165 |
| published_at |
2026-06-14T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45115 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
| reference_url |
https://github.com/advisories/GHSA-53qw-q765-4fww |
| reference_id |
GHSA-53qw-q765-4fww |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-53qw-q765-4fww |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.11 |
| purl |
pkg:pypi/django@3.2.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 10 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 11 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 12 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 13 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 14 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 17 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 18 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 19 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 20 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.11 |
|
| 2 |
| url |
pkg:pypi/django@4.0.1 |
| purl |
pkg:pypi/django@4.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 10 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 13 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.1 |
|
|
| aliases |
BIT-django-2021-45115, CVE-2021-45115, GHSA-53qw-q765-4fww, PYSEC-2022-1
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6uja-brvn-rufw |
|
| 6 |
| url |
VCID-7xx2-z2tg-7khd |
| vulnerability_id |
VCID-7xx2-z2tg-7khd |
| summary |
|
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19844 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.15418 |
| scoring_system |
epss |
| scoring_elements |
0.94825 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.15418 |
| scoring_system |
epss |
| scoring_elements |
0.94826 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.15418 |
| scoring_system |
epss |
| scoring_elements |
0.94801 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.15418 |
| scoring_system |
epss |
| scoring_elements |
0.94819 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19844 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
| reference_url |
https://seclists.org/bugtraq/2020/Jan/9 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://seclists.org/bugtraq/2020/Jan/9 |
|
| 16 |
|
| 17 |
|
| 18 |
| reference_url |
https://usn.ubuntu.com/4224-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4224-1 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
| reference_url |
https://github.com/advisories/GHSA-vfq6-hq5r-27r6 |
| reference_id |
GHSA-vfq6-hq5r-27r6 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-vfq6-hq5r-27r6 |
|
| 30 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.9 |
| purl |
pkg:pypi/django@2.2.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 9 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 10 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 11 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 12 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 13 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 14 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 17 |
| vulnerability |
VCID-v9gk-3pqk-a7cr |
|
| 18 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 19 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 20 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 21 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 22 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 23 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 24 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 25 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 26 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.9 |
|
| 1 |
| url |
pkg:pypi/django@3.0.1 |
| purl |
pkg:pypi/django@3.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 3 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 7 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 8 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 9 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 10 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 11 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 12 |
| vulnerability |
VCID-v9gk-3pqk-a7cr |
|
| 13 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 14 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 15 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 16 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 17 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 18 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 19 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.1 |
|
|
| aliases |
CVE-2019-19844, GHSA-vfq6-hq5r-27r6, PYSEC-2019-16
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7xx2-z2tg-7khd |
|
| 7 |
| url |
VCID-8uyx-7dub-hka9 |
| vulnerability_id |
VCID-8uyx-7dub-hka9 |
| summary |
Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token for the matched user account. (One mitigation in the new releases is to send password reset tokens only to the registered user email address.) |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.9 |
| purl |
pkg:pypi/django@2.2.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 9 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 10 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 11 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 12 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 13 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 14 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 17 |
| vulnerability |
VCID-v9gk-3pqk-a7cr |
|
| 18 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 19 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 20 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 21 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 22 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 23 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 24 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 25 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 26 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.9 |
|
|
| aliases |
PYSEC-2019-86
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8uyx-7dub-hka9 |
|
| 8 |
| url |
VCID-9qxj-9mb9-7bcv |
| vulnerability_id |
VCID-9qxj-9mb9-7bcv |
| summary |
|
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/advisories/GHSA-xgxc-v2qg-chmh |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-xgxc-v2qg-chmh |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
| reference_url |
https://pypi.org/project/Django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://pypi.org/project/Django |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.20 |
| purl |
pkg:pypi/django@2.2.20 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 10 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 11 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 12 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 13 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 14 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 15 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 16 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 17 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.20 |
|
| 1 |
| url |
pkg:pypi/django@3.0.14 |
| purl |
pkg:pypi/django@3.0.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 2 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 3 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 4 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 5 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 6 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 7 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 8 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 9 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 10 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.14 |
|
| 2 |
| url |
pkg:pypi/django@3.1.8 |
| purl |
pkg:pypi/django@3.1.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 5 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 6 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 7 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 8 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 9 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.8 |
|
|
| aliases |
BIT-django-2021-28658, CVE-2021-28658, GHSA-xgxc-v2qg-chmh, PYSEC-2021-6
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9qxj-9mb9-7bcv |
|
| 9 |
| url |
VCID-b5wa-f184-b3da |
| vulnerability_id |
VCID-b5wa-f184-b3da |
| summary |
Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. A Django model admin displaying inline related models, where the user has view-only permissions to a parent model but edit permissions to the inline model, would be presented with an editing UI, allowing POST requests, for updating the inline model. Directly editing the view-only parent model was not possible, but the parent model's save() method was called, triggering potential side effects, and causing pre and post-save signal handlers to be invoked. (To resolve this, the Django admin is adjusted to require edit permissions on the parent model in order for inline models to be editable.) |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.8 |
| purl |
pkg:pypi/django@2.2.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-7xx2-z2tg-7khd |
|
| 7 |
| vulnerability |
VCID-8uyx-7dub-hka9 |
|
| 8 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 9 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 10 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 11 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 12 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 13 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 14 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 15 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 16 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 17 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 18 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 19 |
| vulnerability |
VCID-v9gk-3pqk-a7cr |
|
| 20 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 21 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 22 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 23 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 24 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 25 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 26 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 27 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 28 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.8 |
|
|
| aliases |
PYSEC-2019-85
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b5wa-f184-b3da |
|
| 10 |
| url |
VCID-beas-dwx6-1ffp |
| vulnerability_id |
VCID-beas-dwx6-1ffp |
| summary |
An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8.
The methods `QuerySet.filter()`, `QuerySet.exclude()`, and `QuerySet.get()`, and the class `Q()`, are subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the `_connector` argument.
Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected.
Django would like to thank cyberstan for reporting this issue. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-64459 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00282 |
| scoring_system |
epss |
| scoring_elements |
0.52082 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00282 |
| scoring_system |
epss |
| scoring_elements |
0.52098 |
| published_at |
2026-06-13T12:55:00Z |
|
| 2 |
| value |
0.00282 |
| scoring_system |
epss |
| scoring_elements |
0.51956 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00282 |
| scoring_system |
epss |
| scoring_elements |
0.52086 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-64459 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@4.2.26 |
| purl |
pkg:pypi/django@4.2.26 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 2 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 3 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 4 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 5 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 6 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 7 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 8 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 9 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 10 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 11 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 12 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 13 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 14 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.26 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@5.2.8 |
| purl |
pkg:pypi/django@5.2.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-1g9h-ryet-2ffs |
|
| 2 |
| vulnerability |
VCID-1mp4-kq35-1ba7 |
|
| 3 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 4 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 5 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 6 |
| vulnerability |
VCID-8tz7-vjwz-rycs |
|
| 7 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 8 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 9 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 10 |
| vulnerability |
VCID-h5qf-zbcz-qygg |
|
| 11 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 12 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 13 |
| vulnerability |
VCID-m4mg-yd86-dyfw |
|
| 14 |
| vulnerability |
VCID-n915-wj16-wka6 |
|
| 15 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 16 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 17 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 18 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 19 |
| vulnerability |
VCID-tvk1-4am9-f3cf |
|
| 20 |
| vulnerability |
VCID-z7sj-r61n-qbcd |
|
| 21 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 22 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.8 |
|
| 3 |
|
|
| aliases |
BIT-django-2025-64459, CVE-2025-64459, GHSA-frmv-pr5f-9mcr, PYSEC-2025-108
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-beas-dwx6-1ffp |
|
| 11 |
| url |
VCID-cece-1mun-ckgh |
| vulnerability_id |
VCID-cece-1mun-ckgh |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-22818 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00554 |
| scoring_system |
epss |
| scoring_elements |
0.68632 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00554 |
| scoring_system |
epss |
| scoring_elements |
0.68535 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.00554 |
| scoring_system |
epss |
| scoring_elements |
0.68624 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.00554 |
| scoring_system |
epss |
| scoring_elements |
0.68637 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-22818 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
| reference_url |
https://github.com/advisories/GHSA-95rw-fx8r-36v6 |
| reference_id |
GHSA-95rw-fx8r-36v6 |
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-95rw-fx8r-36v6 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.12 |
| purl |
pkg:pypi/django@3.2.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 10 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 11 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 12 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 13 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 14 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 15 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 16 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 17 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 18 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.12 |
|
| 2 |
| url |
pkg:pypi/django@4.0.2 |
| purl |
pkg:pypi/django@4.0.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 8 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 9 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 10 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 11 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 12 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 13 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.2 |
|
|
| aliases |
BIT-django-2022-22818, CVE-2022-22818, GHSA-95rw-fx8r-36v6, PYSEC-2022-19
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cece-1mun-ckgh |
|
| 12 |
| url |
VCID-db6w-yj8t-sfg4 |
| vulnerability_id |
VCID-db6w-yj8t-sfg4 |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-57833 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22452 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22641 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22661 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22648 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-57833 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
| reference_url |
https://groups.google.com/g/django-announce |
| reference_id |
django-announce |
| reference_type |
|
| scores |
| 0 |
| value |
7.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N |
|
| 1 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-08T17:33:03Z/ |
|
|
| url |
https://groups.google.com/g/django-announce |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@4.2.24 |
| purl |
pkg:pypi/django@4.2.24 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 2 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 3 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 6 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 7 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 8 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 9 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 10 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 11 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 12 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 13 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 14 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 15 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 16 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 17 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 18 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.24 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@5.2.6 |
| purl |
pkg:pypi/django@5.2.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-1g9h-ryet-2ffs |
|
| 2 |
| vulnerability |
VCID-1mp4-kq35-1ba7 |
|
| 3 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 4 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 5 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 6 |
| vulnerability |
VCID-8tz7-vjwz-rycs |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 9 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 10 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 11 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 12 |
| vulnerability |
VCID-h5qf-zbcz-qygg |
|
| 13 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 14 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 15 |
| vulnerability |
VCID-m4mg-yd86-dyfw |
|
| 16 |
| vulnerability |
VCID-n915-wj16-wka6 |
|
| 17 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 18 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 19 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 20 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 21 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 22 |
| vulnerability |
VCID-tvk1-4am9-f3cf |
|
| 23 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 24 |
| vulnerability |
VCID-z7sj-r61n-qbcd |
|
| 25 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 26 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.6 |
|
|
| aliases |
BIT-django-2025-57833, CVE-2025-57833, GHSA-6w2r-r2m5-xq5w, PYSEC-2025-105
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-db6w-yj8t-sfg4 |
|
| 13 |
| url |
VCID-djh3-m1t4-2qe1 |
| vulnerability_id |
VCID-djh3-m1t4-2qe1 |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-13596 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00571 |
| scoring_system |
epss |
| scoring_elements |
0.69197 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00571 |
| scoring_system |
epss |
| scoring_elements |
0.69203 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00571 |
| scoring_system |
epss |
| scoring_elements |
0.69209 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00571 |
| scoring_system |
epss |
| scoring_elements |
0.69104 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-13596 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
| reference_url |
https://usn.ubuntu.com/4381-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4381-1 |
|
| 17 |
|
| 18 |
| reference_url |
https://usn.ubuntu.com/4381-2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4381-2 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
| reference_url |
https://github.com/advisories/GHSA-2m34-jcjv-45xf |
| reference_id |
GHSA-2m34-jcjv-45xf |
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-2m34-jcjv-45xf |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.13 |
| purl |
pkg:pypi/django@2.2.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 3 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 4 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 5 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 6 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 7 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 10 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 11 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 12 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 13 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 14 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 15 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 16 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 17 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 18 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 19 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 20 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 21 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 22 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.13 |
|
| 1 |
| url |
pkg:pypi/django@3.0.7 |
| purl |
pkg:pypi/django@3.0.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 10 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 11 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 12 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 13 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.7 |
|
|
| aliases |
BIT-django-2020-13596, CVE-2020-13596, GHSA-2m34-jcjv-45xf, PYSEC-2020-32
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-djh3-m1t4-2qe1 |
|
| 14 |
| url |
VCID-dttw-t3a9-gbbn |
| vulnerability_id |
VCID-dttw-t3a9-gbbn |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-31542 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04357 |
| scoring_system |
epss |
| scoring_elements |
0.89225 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.04357 |
| scoring_system |
epss |
| scoring_elements |
0.89232 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.04357 |
| scoring_system |
epss |
| scoring_elements |
0.89233 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.04357 |
| scoring_system |
epss |
| scoring_elements |
0.89187 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-31542 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.21 |
| purl |
pkg:pypi/django@2.2.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 8 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 9 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 10 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 11 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 12 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 13 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 16 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.21 |
|
| 1 |
| url |
pkg:pypi/django@3.1.9 |
| purl |
pkg:pypi/django@3.1.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 5 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 6 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 7 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 8 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 9 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 10 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.9 |
|
| 2 |
| url |
pkg:pypi/django@3.2.1 |
| purl |
pkg:pypi/django@3.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 6 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 7 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 8 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 9 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 10 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 11 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 12 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 13 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 14 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 15 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 16 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 17 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 18 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 19 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 20 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 21 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 22 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 23 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 24 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 25 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 26 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 27 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 28 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.1 |
|
|
| aliases |
BIT-django-2021-31542, CVE-2021-31542, GHSA-rxjp-mfm9-w4wr, PYSEC-2021-7
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dttw-t3a9-gbbn |
|
| 15 |
| url |
VCID-gtkn-prux-vbdb |
| vulnerability_id |
VCID-gtkn-prux-vbdb |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-28346 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01971 |
| scoring_system |
epss |
| scoring_elements |
0.83984 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.01971 |
| scoring_system |
epss |
| scoring_elements |
0.8398 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.01971 |
| scoring_system |
epss |
| scoring_elements |
0.8392 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.01971 |
| scoring_system |
epss |
| scoring_elements |
0.83977 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-28346 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
| reference_url |
https://github.com/advisories/GHSA-2gwj-7jmv-h26r |
| reference_id |
GHSA-2gwj-7jmv-h26r |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-2gwj-7jmv-h26r |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.13 |
| purl |
pkg:pypi/django@3.2.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 9 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 10 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 11 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 12 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 13 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 16 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.13 |
|
| 2 |
| url |
pkg:pypi/django@4.0.4 |
| purl |
pkg:pypi/django@4.0.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 6 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 7 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.4 |
|
|
| aliases |
BIT-django-2022-28346, CVE-2022-28346, GHSA-2gwj-7jmv-h26r, PYSEC-2022-190
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gtkn-prux-vbdb |
|
| 16 |
| url |
VCID-j3bz-6jqe-ffgm |
| vulnerability_id |
VCID-j3bz-6jqe-ffgm |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44420 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32423 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32402 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32222 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32404 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-44420 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
| reference_url |
https://github.com/advisories/GHSA-v6rh-hp5x-86rv |
| reference_id |
GHSA-v6rh-hp5x-86rv |
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-v6rh-hp5x-86rv |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.25 |
| purl |
pkg:pypi/django@2.2.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 12 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.25 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@3.2.10 |
| purl |
pkg:pypi/django@3.2.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 3 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 4 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 5 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 6 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 9 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 10 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 11 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 12 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 13 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 14 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 15 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 16 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 17 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 18 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 19 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 20 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 21 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 22 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 23 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.10 |
|
|
| aliases |
BIT-django-2021-44420, CVE-2021-44420, GHSA-v6rh-hp5x-86rv, PYSEC-2021-439
|
| risk_score |
3.3 |
| exploitability |
0.5 |
| weighted_severity |
6.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j3bz-6jqe-ffgm |
|
| 17 |
| url |
VCID-nwtr-br34-qkbv |
| vulnerability_id |
VCID-nwtr-br34-qkbv |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-24584 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02755 |
| scoring_system |
epss |
| scoring_elements |
0.86389 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.02755 |
| scoring_system |
epss |
| scoring_elements |
0.8633 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.02755 |
| scoring_system |
epss |
| scoring_elements |
0.86381 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.02755 |
| scoring_system |
epss |
| scoring_elements |
0.86392 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-24584 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/advisories/GHSA-fr28-569j-53c4 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-fr28-569j-53c4 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
| reference_url |
https://usn.ubuntu.com/4479-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4479-1 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.16 |
| purl |
pkg:pypi/django@2.2.16 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 8 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 9 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 10 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 13 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 14 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 15 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 16 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 17 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 18 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 19 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 20 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.16 |
|
| 1 |
| url |
pkg:pypi/django@3.0.10 |
| purl |
pkg:pypi/django@3.0.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 5 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 6 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 7 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 8 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 11 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 12 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 13 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.10 |
|
| 2 |
| url |
pkg:pypi/django@3.1.1 |
| purl |
pkg:pypi/django@3.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 9 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 10 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 11 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 12 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 13 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 14 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.1 |
|
|
| aliases |
BIT-django-2020-24584, CVE-2020-24584, GHSA-fr28-569j-53c4, PYSEC-2020-34
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nwtr-br34-qkbv |
|
| 18 |
| url |
VCID-rcfr-czct-xucv |
| vulnerability_id |
VCID-rcfr-czct-xucv |
| summary |
Multiple vulnerabilities have been found in Django, the worst of
which could result in privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19118 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00354 |
| scoring_system |
epss |
| scoring_elements |
0.58225 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00354 |
| scoring_system |
epss |
| scoring_elements |
0.5822 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.00354 |
| scoring_system |
epss |
| scoring_elements |
0.58107 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00354 |
| scoring_system |
epss |
| scoring_elements |
0.58236 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19118 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
| reference_url |
https://github.com/advisories/GHSA-hvmf-r92r-27hr |
| reference_id |
GHSA-hvmf-r92r-27hr |
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
7.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-hvmf-r92r-27hr |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.8 |
| purl |
pkg:pypi/django@2.2.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-7xx2-z2tg-7khd |
|
| 7 |
| vulnerability |
VCID-8uyx-7dub-hka9 |
|
| 8 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 9 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 10 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 11 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 12 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 13 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 14 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 15 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 16 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 17 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 18 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 19 |
| vulnerability |
VCID-v9gk-3pqk-a7cr |
|
| 20 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 21 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 22 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 23 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 24 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 25 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 26 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 27 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 28 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.8 |
|
|
| aliases |
CVE-2019-19118, GHSA-hvmf-r92r-27hr, PYSEC-2019-15
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rcfr-czct-xucv |
|
| 19 |
| url |
VCID-tudc-7sgh-nkda |
| vulnerability_id |
VCID-tudc-7sgh-nkda |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-45231 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00235 |
| scoring_system |
epss |
| scoring_elements |
0.46721 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00235 |
| scoring_system |
epss |
| scoring_elements |
0.46717 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00235 |
| scoring_system |
epss |
| scoring_elements |
0.46731 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00235 |
| scoring_system |
epss |
| scoring_elements |
0.46576 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-45231 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
| reference_url |
https://groups.google.com/forum/#%21forum/django-announce |
| reference_id |
django-announce |
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-30T16:35:34Z/ |
|
|
| url |
https://groups.google.com/forum/#%21forum/django-announce |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@4.2.16 |
| purl |
pkg:pypi/django@4.2.16 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 2 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 3 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 4 |
| vulnerability |
VCID-a4fn-xf8s-tye5 |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 8 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 9 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 10 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 11 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 12 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 13 |
| vulnerability |
VCID-mja4-jz67-kbh6 |
|
| 14 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 15 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 16 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 17 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 18 |
| vulnerability |
VCID-s9u4-39qe-pkh2 |
|
| 19 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 20 |
| vulnerability |
VCID-wwzx-eujh-sye1 |
|
| 21 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 22 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 23 |
| vulnerability |
VCID-z3vg-rtt7-vuem |
|
| 24 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 25 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.16 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@5.1.1 |
| purl |
pkg:pypi/django@5.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-6wvp-47qa-m7bc |
|
| 1 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 2 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 3 |
| vulnerability |
VCID-a4fn-xf8s-tye5 |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 7 |
| vulnerability |
VCID-mja4-jz67-kbh6 |
|
| 8 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 9 |
| vulnerability |
VCID-s9u4-39qe-pkh2 |
|
| 10 |
| vulnerability |
VCID-wwzx-eujh-sye1 |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 13 |
| vulnerability |
VCID-z3vg-rtt7-vuem |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.1 |
|
|
| aliases |
CVE-2024-45231, GHSA-rrqc-c2jx-6jgv
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tudc-7sgh-nkda |
|
| 20 |
| url |
VCID-u9dr-ca2g-e3hk |
| vulnerability_id |
VCID-u9dr-ca2g-e3hk |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-33203 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00143 |
| scoring_system |
epss |
| scoring_elements |
0.34428 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.00143 |
| scoring_system |
epss |
| scoring_elements |
0.34408 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00143 |
| scoring_system |
epss |
| scoring_elements |
0.34225 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00143 |
| scoring_system |
epss |
| scoring_elements |
0.34403 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-33203 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/advisories/GHSA-68w8-qjq3-2gfm |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-68w8-qjq3-2gfm |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.24 |
| purl |
pkg:pypi/django@2.2.24 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 10 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 13 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.24 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@3.2.4 |
| purl |
pkg:pypi/django@3.2.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 7 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 8 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 9 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 10 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 11 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 12 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 13 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 14 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 15 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 16 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 17 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 18 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 19 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 20 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 21 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 22 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 23 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 24 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 25 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.4 |
|
|
| aliases |
BIT-django-2021-33203, CVE-2021-33203, GHSA-68w8-qjq3-2gfm, PYSEC-2021-98
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u9dr-ca2g-e3hk |
|
| 21 |
| url |
VCID-v9gk-3pqk-a7cr |
| vulnerability_id |
VCID-v9gk-3pqk-a7cr |
| summary |
|
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
| reference_url |
https://seclists.org/bugtraq/2020/Feb/30 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://seclists.org/bugtraq/2020/Feb/30 |
|
| 16 |
|
| 17 |
|
| 18 |
| reference_url |
https://usn.ubuntu.com/4264-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4264-1 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
| reference_url |
https://github.com/advisories/GHSA-hmr4-m2h5-33qx |
| reference_id |
GHSA-hmr4-m2h5-33qx |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-hmr4-m2h5-33qx |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.10 |
| purl |
pkg:pypi/django@2.2.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 9 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 10 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 11 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 12 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 13 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 14 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 17 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 18 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 19 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 20 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 21 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 22 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 23 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 24 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 25 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.10 |
|
| 1 |
| url |
pkg:pypi/django@3.0.3 |
| purl |
pkg:pypi/django@3.0.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 3 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 7 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 8 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 9 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 10 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 11 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 12 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 13 |
| vulnerability |
VCID-vcqt-n2pk-kyeb |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 16 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 17 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 18 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.3 |
|
|
| aliases |
BIT-django-2020-7471, CVE-2020-7471, GHSA-hmr4-m2h5-33qx, PYSEC-2020-35
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v9gk-3pqk-a7cr |
|
| 22 |
| url |
VCID-vc8c-7qn1-9uaz |
| vulnerability_id |
VCID-vc8c-7qn1-9uaz |
| summary |
|
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://github.com/advisories/GHSA-fvgf-6h6h-3322 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-fvgf-6h6h-3322 |
|
| 8 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.18 |
| purl |
pkg:pypi/django@2.2.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 8 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 9 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 10 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 13 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 16 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 17 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 18 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 19 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.18 |
|
| 1 |
| url |
pkg:pypi/django@3.0.12 |
| purl |
pkg:pypi/django@3.0.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 5 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 6 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 7 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 8 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 9 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 10 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.12 |
|
| 2 |
| url |
pkg:pypi/django@3.1.6 |
| purl |
pkg:pypi/django@3.1.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 11 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 12 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 13 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.6 |
|
|
| aliases |
BIT-django-2021-3281, CVE-2021-3281, GHSA-fvgf-6h6h-3322, PYSEC-2021-9
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vc8c-7qn1-9uaz |
|
| 23 |
| url |
VCID-vcqt-n2pk-kyeb |
| vulnerability_id |
VCID-vcqt-n2pk-kyeb |
| summary |
|
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://usn.ubuntu.com/4296-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4296-1 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
| reference_url |
https://github.com/advisories/GHSA-3gh2-xw74-jmcw |
| reference_id |
GHSA-3gh2-xw74-jmcw |
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-3gh2-xw74-jmcw |
|
| 33 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.11 |
| purl |
pkg:pypi/django@2.2.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 9 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 10 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 11 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 12 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 13 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 14 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 17 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 18 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 19 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 20 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 21 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 22 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 23 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 24 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.11 |
|
| 1 |
| url |
pkg:pypi/django@3.0.4 |
| purl |
pkg:pypi/django@3.0.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-27gm-2u1q-skh1 |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 3 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 7 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 8 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 9 |
| vulnerability |
VCID-nwtr-br34-qkbv |
|
| 10 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 11 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 12 |
| vulnerability |
VCID-vc8c-7qn1-9uaz |
|
| 13 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 14 |
| vulnerability |
VCID-x1qk-bs7j-63ch |
|
| 15 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 16 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 17 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.4 |
|
|
| aliases |
BIT-django-2020-9402, CVE-2020-9402, GHSA-3gh2-xw74-jmcw, PYSEC-2020-345, PYSEC-2020-36
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vcqt-n2pk-kyeb |
|
| 24 |
| url |
VCID-w3dy-chny-5fbc |
| vulnerability_id |
VCID-w3dy-chny-5fbc |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-28347 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00748 |
| scoring_system |
epss |
| scoring_elements |
0.73633 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.00748 |
| scoring_system |
epss |
| scoring_elements |
0.73631 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00748 |
| scoring_system |
epss |
| scoring_elements |
0.73618 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.00748 |
| scoring_system |
epss |
| scoring_elements |
0.73544 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-28347 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
| reference_url |
https://github.com/advisories/GHSA-w24h-v9qh-8gxj |
| reference_id |
GHSA-w24h-v9qh-8gxj |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-w24h-v9qh-8gxj |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.13 |
| purl |
pkg:pypi/django@3.2.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 9 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 10 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 11 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 12 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 13 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 16 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.13 |
|
| 2 |
| url |
pkg:pypi/django@4.0.4 |
| purl |
pkg:pypi/django@4.0.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 6 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 7 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.4 |
|
|
| aliases |
BIT-django-2022-28347, CVE-2022-28347, GHSA-w24h-v9qh-8gxj, PYSEC-2022-191
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w3dy-chny-5fbc |
|
| 25 |
| url |
VCID-wpt2-535q-3yfe |
| vulnerability_id |
VCID-wpt2-535q-3yfe |
| summary |
|
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-36359 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0113 |
| scoring_system |
epss |
| scoring_elements |
0.78797 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.0113 |
| scoring_system |
epss |
| scoring_elements |
0.78811 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.0113 |
| scoring_system |
epss |
| scoring_elements |
0.78814 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.0113 |
| scoring_system |
epss |
| scoring_elements |
0.78732 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-36359 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@3.2.15 |
| purl |
pkg:pypi/django@3.2.15 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 8 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 9 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 10 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 13 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 14 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.15 |
|
| 1 |
| url |
pkg:pypi/django@4.0.7 |
| purl |
pkg:pypi/django@4.0.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 2 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 6 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 9 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.7 |
|
|
| aliases |
BIT-django-2022-36359, CVE-2022-36359, GHSA-8x94-hmjh-97hq, PYSEC-2022-245
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wpt2-535q-3yfe |
|
| 26 |
| url |
VCID-x1qk-bs7j-63ch |
| vulnerability_id |
VCID-x1qk-bs7j-63ch |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-23336 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54871 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54872 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54888 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54748 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-23336 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.19 |
| purl |
pkg:pypi/django@2.2.19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 8 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 9 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 10 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 13 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 16 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 17 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 18 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.19 |
|
| 1 |
| url |
pkg:pypi/django@3.0a1 |
| purl |
pkg:pypi/django@3.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-djh3-m1t4-2qe1 |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 9 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0a1 |
|
| 2 |
| url |
pkg:pypi/django@3.0.13 |
| purl |
pkg:pypi/django@3.0.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 2 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 3 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 4 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 5 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 6 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 7 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 8 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 9 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 10 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 11 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.0.13 |
|
| 3 |
| url |
pkg:pypi/django@3.1a1 |
| purl |
pkg:pypi/django@3.1a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-2qu4-qayw-a7ec |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1a1 |
|
| 4 |
| url |
pkg:pypi/django@3.1.7 |
| purl |
pkg:pypi/django@3.1.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 1 |
| vulnerability |
VCID-5zzj-9ez5-6ub1 |
|
| 2 |
| vulnerability |
VCID-9qxj-9mb9-7bcv |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 5 |
| vulnerability |
VCID-dttw-t3a9-gbbn |
|
| 6 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 7 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 8 |
| vulnerability |
VCID-u9dr-ca2g-e3hk |
|
| 9 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 10 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.1.7 |
|
| 5 |
| url |
pkg:pypi/django@3.2a1 |
| purl |
pkg:pypi/django@3.2a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 4 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 9 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 10 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 11 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 12 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 13 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 14 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 15 |
| vulnerability |
VCID-x91x-cxp9-4fgp |
|
| 16 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 17 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2a1 |
|
|
| aliases |
CVE-2021-23336
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x1qk-bs7j-63ch |
|
| 27 |
| url |
VCID-x91x-cxp9-4fgp |
| vulnerability_id |
VCID-x91x-cxp9-4fgp |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-33571 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03081 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03076 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03069 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03064 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-33571 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@2.2.24 |
| purl |
pkg:pypi/django@2.2.24 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 1 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 2 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 3 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 4 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 7 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 8 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 9 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 10 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 11 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 12 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 13 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.24 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@3.2.4 |
| purl |
pkg:pypi/django@3.2.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-28ff-ng96-5ugk |
|
| 2 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 3 |
| vulnerability |
VCID-38w8-jbku-eugu |
|
| 4 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 5 |
| vulnerability |
VCID-6uja-brvn-rufw |
|
| 6 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 7 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 8 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 9 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 10 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 11 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 12 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 13 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 14 |
| vulnerability |
VCID-j3bz-6jqe-ffgm |
|
| 15 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 16 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 17 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 18 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 19 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 20 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 21 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 22 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 23 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 24 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
| 25 |
| vulnerability |
VCID-ymm2-ns18-wkcw |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.4 |
|
|
| aliases |
BIT-django-2021-33571, CVE-2021-33571, GHSA-p99v-5w3c-jqq9, PYSEC-2021-99
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x91x-cxp9-4fgp |
|
| 28 |
| url |
VCID-xkrz-p214-hqhp |
| vulnerability_id |
VCID-xkrz-p214-hqhp |
| summary |
An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8.
NFKC normalization in Python is slow on Windows. As a consequence, `django.http.HttpResponseRedirect`, `django.http.HttpResponsePermanentRedirect`, and the shortcut `django.shortcuts.redirect` were subject to a potential denial-of-service attack via certain inputs with a very large number of Unicode characters.
Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected.
Django would like to thank Seokchan Yoon for reporting this issue. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-64458 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07348 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0735 |
| published_at |
2026-06-13T12:55:00Z |
|
| 2 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07314 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07356 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-64458 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@4.2.26 |
| purl |
pkg:pypi/django@4.2.26 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 2 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 3 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 4 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 5 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 6 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 7 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 8 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 9 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 10 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 11 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 12 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 13 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 14 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.26 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@5.2.8 |
| purl |
pkg:pypi/django@5.2.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-1g9h-ryet-2ffs |
|
| 2 |
| vulnerability |
VCID-1mp4-kq35-1ba7 |
|
| 3 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 4 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 5 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 6 |
| vulnerability |
VCID-8tz7-vjwz-rycs |
|
| 7 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 8 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 9 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 10 |
| vulnerability |
VCID-h5qf-zbcz-qygg |
|
| 11 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 12 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 13 |
| vulnerability |
VCID-m4mg-yd86-dyfw |
|
| 14 |
| vulnerability |
VCID-n915-wj16-wka6 |
|
| 15 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 16 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 17 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 18 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 19 |
| vulnerability |
VCID-tvk1-4am9-f3cf |
|
| 20 |
| vulnerability |
VCID-z7sj-r61n-qbcd |
|
| 21 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 22 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.8 |
|
| 3 |
|
|
| aliases |
BIT-django-2025-64458, CVE-2025-64458, GHSA-qw25-v68c-qjf3, PYSEC-2025-107
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xkrz-p214-hqhp |
|
| 29 |
| url |
VCID-ycc8-7k6j-4kbf |
| vulnerability_id |
VCID-ycc8-7k6j-4kbf |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-48432 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61975 |
| published_at |
2026-06-13T12:55:00Z |
|
| 1 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.6197 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61866 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61967 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-48432 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
| reference_url |
https://groups.google.com/g/django-announce |
| reference_id |
django-announce |
| reference_type |
|
| scores |
| 0 |
| value |
4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N |
|
| 1 |
| value |
4.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T13:20:12Z/ |
|
|
| url |
https://groups.google.com/g/django-announce |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/django@4.2.22 |
| purl |
pkg:pypi/django@4.2.22 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 2 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 3 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 6 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 7 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 8 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 9 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 10 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 11 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 12 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 13 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 14 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 15 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 16 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 17 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 18 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 19 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.22 |
|
| 1 |
|
| 2 |
| url |
pkg:pypi/django@5.2.2 |
| purl |
pkg:pypi/django@5.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-13q1-fzeg-bfd9 |
|
| 1 |
| vulnerability |
VCID-1g9h-ryet-2ffs |
|
| 2 |
| vulnerability |
VCID-1mp4-kq35-1ba7 |
|
| 3 |
| vulnerability |
VCID-4xtu-yeh2-pbc8 |
|
| 4 |
| vulnerability |
VCID-72z9-v49q-vbcc |
|
| 5 |
| vulnerability |
VCID-81b9-uqyv-kkhm |
|
| 6 |
| vulnerability |
VCID-8tz7-vjwz-rycs |
|
| 7 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-dh5p-grha-r7a2 |
|
| 10 |
| vulnerability |
VCID-dqpz-q718-pkas |
|
| 11 |
| vulnerability |
VCID-e331-cbgc-hubm |
|
| 12 |
| vulnerability |
VCID-fwwm-7y13-y3dx |
|
| 13 |
| vulnerability |
VCID-h5qf-zbcz-qygg |
|
| 14 |
| vulnerability |
VCID-hb8n-gwz6-9yd9 |
|
| 15 |
| vulnerability |
VCID-jdjc-ygtk-c7hv |
|
| 16 |
| vulnerability |
VCID-m4mg-yd86-dyfw |
|
| 17 |
| vulnerability |
VCID-n915-wj16-wka6 |
|
| 18 |
| vulnerability |
VCID-pmhc-yu6r-uudy |
|
| 19 |
| vulnerability |
VCID-pn2d-2euz-pudt |
|
| 20 |
| vulnerability |
VCID-q3sw-jd7p-1yg1 |
|
| 21 |
| vulnerability |
VCID-r3dj-t213-jyhh |
|
| 22 |
| vulnerability |
VCID-sbwy-buwj-gkd2 |
|
| 23 |
| vulnerability |
VCID-tvk1-4am9-f3cf |
|
| 24 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 25 |
| vulnerability |
VCID-z7sj-r61n-qbcd |
|
| 26 |
| vulnerability |
VCID-zr7g-1xkm-fqdw |
|
| 27 |
| vulnerability |
VCID-zztc-4be5-fker |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.2 |
|
|
| aliases |
BIT-django-2025-48432, CVE-2025-48432, GHSA-7xr5-9hcq-chf9, PYSEC-2025-47
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ycc8-7k6j-4kbf |
|
| 30 |
| url |
VCID-ymm2-ns18-wkcw |
| vulnerability_id |
VCID-ymm2-ns18-wkcw |
| summary |
|
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45116 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58932 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58942 |
| published_at |
2026-06-13T12:55:00Z |
|
| 2 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58927 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58816 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-45116 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/django/django |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/django/django |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
| reference_url |
https://github.com/advisories/GHSA-8c5j-9r9f-c6w8 |
| reference_id |
GHSA-8c5j-9r9f-c6w8 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-8c5j-9r9f-c6w8 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/django@3.2.11 |
| purl |
pkg:pypi/django@3.2.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-9ge1-u71f-rbaw |
|
| 5 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 6 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 7 |
| vulnerability |
VCID-d2cw-526n-mbem |
|
| 8 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 9 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 10 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 11 |
| vulnerability |
VCID-j4rs-235r-dkfj |
|
| 12 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 13 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 14 |
| vulnerability |
VCID-qsme-8a2n-23fs |
|
| 15 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 16 |
| vulnerability |
VCID-ufv7-y5a7-fugg |
|
| 17 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 18 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 19 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 20 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.11 |
|
| 2 |
| url |
pkg:pypi/django@4.0.1 |
| purl |
pkg:pypi/django@4.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-19se-3ng9-c7bw |
|
| 1 |
| vulnerability |
VCID-2sve-8b9b-hud7 |
|
| 2 |
| vulnerability |
VCID-6tdg-t4nv-sbha |
|
| 3 |
| vulnerability |
VCID-7spe-cayc-4qb4 |
|
| 4 |
| vulnerability |
VCID-beas-dwx6-1ffp |
|
| 5 |
| vulnerability |
VCID-cece-1mun-ckgh |
|
| 6 |
| vulnerability |
VCID-db6w-yj8t-sfg4 |
|
| 7 |
| vulnerability |
VCID-fmpr-bhrf-17gm |
|
| 8 |
| vulnerability |
VCID-gtkn-prux-vbdb |
|
| 9 |
| vulnerability |
VCID-jspj-r34n-jubz |
|
| 10 |
| vulnerability |
VCID-nhzy-7qdm-wbg8 |
|
| 11 |
| vulnerability |
VCID-tudc-7sgh-nkda |
|
| 12 |
| vulnerability |
VCID-w3dy-chny-5fbc |
|
| 13 |
| vulnerability |
VCID-wpt2-535q-3yfe |
|
| 14 |
| vulnerability |
VCID-xkrz-p214-hqhp |
|
| 15 |
| vulnerability |
VCID-ycc8-7k6j-4kbf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.1 |
|
|
| aliases |
BIT-django-2021-45116, CVE-2021-45116, GHSA-8c5j-9r9f-c6w8, PYSEC-2022-2
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ymm2-ns18-wkcw |
|