Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-a3e2-se1v-2yb5
SummaryAn issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.views.LoginView, django.contrib.auth.views.LogoutView, and django.views.i18n.set_language are subject to a potential denial-of-service attack via certain inputs with a very large number of Unicode characters.
Aliases
0
alias BIT-django-2025-27556
1
alias CVE-2025-27556
2
alias GHSA-wqfg-m96j-85vm
3
alias PYSEC-2025-14
Fixed_packages
0
url pkg:deb/debian/python-django@0?distro=trixie
purl pkg:deb/debian/python-django@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@0%3Fdistro=trixie
1
url pkg:deb/debian/python-django@2:2.2.28-1~deb11u2?distro=trixie
purl pkg:deb/debian/python-django@2:2.2.28-1~deb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-32d1-b8f2-hud5
1
vulnerability VCID-3ccr-92q5-aqfk
2
vulnerability VCID-63c7-mkxw-ufav
3
vulnerability VCID-92z2-3rbz-77h9
4
vulnerability VCID-ape9-66ck-nfez
5
vulnerability VCID-cg44-thdw-cygg
6
vulnerability VCID-dac4-fa2z-bkdq
7
vulnerability VCID-g22z-jue5-8udz
8
vulnerability VCID-heum-8mwz-sbcw
9
vulnerability VCID-j2uz-w2ur-7ud4
10
vulnerability VCID-jt9m-kd3k-uqca
11
vulnerability VCID-q4cv-2m7d-3qd5
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@2:2.2.28-1~deb11u2%3Fdistro=trixie
2
url pkg:deb/debian/python-django@3:3.2.25-0%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-django@3:3.2.25-0%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-32d1-b8f2-hud5
1
vulnerability VCID-3ccr-92q5-aqfk
2
vulnerability VCID-63c7-mkxw-ufav
3
vulnerability VCID-92z2-3rbz-77h9
4
vulnerability VCID-ape9-66ck-nfez
5
vulnerability VCID-cg44-thdw-cygg
6
vulnerability VCID-dac4-fa2z-bkdq
7
vulnerability VCID-g22z-jue5-8udz
8
vulnerability VCID-heum-8mwz-sbcw
9
vulnerability VCID-j2uz-w2ur-7ud4
10
vulnerability VCID-jt9m-kd3k-uqca
11
vulnerability VCID-q4cv-2m7d-3qd5
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:3.2.25-0%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-django@3:4.2.28-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/python-django@3:4.2.28-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-32d1-b8f2-hud5
1
vulnerability VCID-3ccr-92q5-aqfk
2
vulnerability VCID-63c7-mkxw-ufav
3
vulnerability VCID-92z2-3rbz-77h9
4
vulnerability VCID-cg44-thdw-cygg
5
vulnerability VCID-dac4-fa2z-bkdq
6
vulnerability VCID-g22z-jue5-8udz
7
vulnerability VCID-heum-8mwz-sbcw
8
vulnerability VCID-j2uz-w2ur-7ud4
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:4.2.28-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/python-django@3:4.2.30-1?distro=trixie
purl pkg:deb/debian/python-django@3:4.2.30-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3ccr-92q5-aqfk
1
vulnerability VCID-92z2-3rbz-77h9
2
vulnerability VCID-g22z-jue5-8udz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:4.2.30-1%3Fdistro=trixie
5
url pkg:deb/debian/python-django@3:5.2.14-2?distro=trixie
purl pkg:deb/debian/python-django@3:5.2.14-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:5.2.14-2%3Fdistro=trixie
6
url pkg:pypi/django@5.0.14
purl pkg:pypi/django@5.0.14
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.14
7
url pkg:pypi/django@5.1.8
purl pkg:pypi/django@5.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3d6k-rdsh-k7hm
1
vulnerability VCID-7jbt-5zw2-vff2
2
vulnerability VCID-9udu-eqvn-mqbj
3
vulnerability VCID-ax7m-uv4s-zkc1
4
vulnerability VCID-em3c-ceug-cubp
5
vulnerability VCID-fbee-vj2y-cfeb
6
vulnerability VCID-u15a-4ste-43cy
7
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.8
Affected_packages
0
url pkg:pypi/django@5.0
purl pkg:pypi/django@5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-ax42-esfz-vud2
7
vulnerability VCID-bjn5-qpmt-qffx
8
vulnerability VCID-bq5s-uknu-z7cn
9
vulnerability VCID-chey-b3c1-pbe5
10
vulnerability VCID-jt9m-kd3k-uqca
11
vulnerability VCID-kv5d-p5n4-r7dp
12
vulnerability VCID-nyc2-p1rp-xkb4
13
vulnerability VCID-q4cv-2m7d-3qd5
14
vulnerability VCID-sz4x-rr8f-a3hf
15
vulnerability VCID-vm2w-caad-nyd3
16
vulnerability VCID-x4s4-qav9-xbet
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0
1
url pkg:pypi/django@5.0.1
purl pkg:pypi/django@5.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bjn5-qpmt-qffx
7
vulnerability VCID-bq5s-uknu-z7cn
8
vulnerability VCID-chey-b3c1-pbe5
9
vulnerability VCID-jt9m-kd3k-uqca
10
vulnerability VCID-kv5d-p5n4-r7dp
11
vulnerability VCID-nyc2-p1rp-xkb4
12
vulnerability VCID-q4cv-2m7d-3qd5
13
vulnerability VCID-sz4x-rr8f-a3hf
14
vulnerability VCID-vm2w-caad-nyd3
15
vulnerability VCID-x4s4-qav9-xbet
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.1
2
url pkg:pypi/django@5.0.2
purl pkg:pypi/django@5.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bjn5-qpmt-qffx
7
vulnerability VCID-bq5s-uknu-z7cn
8
vulnerability VCID-chey-b3c1-pbe5
9
vulnerability VCID-jt9m-kd3k-uqca
10
vulnerability VCID-kv5d-p5n4-r7dp
11
vulnerability VCID-nyc2-p1rp-xkb4
12
vulnerability VCID-q4cv-2m7d-3qd5
13
vulnerability VCID-sz4x-rr8f-a3hf
14
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.2
3
url pkg:pypi/django@5.0.3
purl pkg:pypi/django@5.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bq5s-uknu-z7cn
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-jt9m-kd3k-uqca
9
vulnerability VCID-kv5d-p5n4-r7dp
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-q4cv-2m7d-3qd5
12
vulnerability VCID-sz4x-rr8f-a3hf
13
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.3
4
url pkg:pypi/django@5.0.4
purl pkg:pypi/django@5.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bq5s-uknu-z7cn
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-jt9m-kd3k-uqca
9
vulnerability VCID-kv5d-p5n4-r7dp
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-q4cv-2m7d-3qd5
12
vulnerability VCID-sz4x-rr8f-a3hf
13
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.4
5
url pkg:pypi/django@5.0.5
purl pkg:pypi/django@5.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bq5s-uknu-z7cn
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-jt9m-kd3k-uqca
9
vulnerability VCID-kv5d-p5n4-r7dp
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-q4cv-2m7d-3qd5
12
vulnerability VCID-sz4x-rr8f-a3hf
13
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.5
6
url pkg:pypi/django@5.0.6
purl pkg:pypi/django@5.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1c7j-evpp-53eb
1
vulnerability VCID-1umb-2rxg-bbdk
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-68nb-696n-n3bf
4
vulnerability VCID-a3e2-se1v-2yb5
5
vulnerability VCID-ape9-66ck-nfez
6
vulnerability VCID-bq5s-uknu-z7cn
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-jt9m-kd3k-uqca
9
vulnerability VCID-kv5d-p5n4-r7dp
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-q4cv-2m7d-3qd5
12
vulnerability VCID-sz4x-rr8f-a3hf
13
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.6
7
url pkg:pypi/django@5.0.7
purl pkg:pypi/django@5.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-4vry-9jdm-nyg9
2
vulnerability VCID-68nb-696n-n3bf
3
vulnerability VCID-a3e2-se1v-2yb5
4
vulnerability VCID-bq5s-uknu-z7cn
5
vulnerability VCID-chey-b3c1-pbe5
6
vulnerability VCID-jt9m-kd3k-uqca
7
vulnerability VCID-nyc2-p1rp-xkb4
8
vulnerability VCID-q4cv-2m7d-3qd5
9
vulnerability VCID-vm2w-caad-nyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.7
8
url pkg:pypi/django@5.0.8
purl pkg:pypi/django@5.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-4vry-9jdm-nyg9
2
vulnerability VCID-a3e2-se1v-2yb5
3
vulnerability VCID-chey-b3c1-pbe5
4
vulnerability VCID-jt9m-kd3k-uqca
5
vulnerability VCID-nyc2-p1rp-xkb4
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.8
9
url pkg:pypi/django@5.0.9
purl pkg:pypi/django@5.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-4vry-9jdm-nyg9
2
vulnerability VCID-a3e2-se1v-2yb5
3
vulnerability VCID-chey-b3c1-pbe5
4
vulnerability VCID-nyc2-p1rp-xkb4
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.9
10
url pkg:pypi/django@5.0.10
purl pkg:pypi/django@5.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a3e2-se1v-2yb5
1
vulnerability VCID-chey-b3c1-pbe5
2
vulnerability VCID-nyc2-p1rp-xkb4
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.10
11
url pkg:pypi/django@5.0.11
purl pkg:pypi/django@5.0.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a3e2-se1v-2yb5
1
vulnerability VCID-nyc2-p1rp-xkb4
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.11
12
url pkg:pypi/django@5.0.12
purl pkg:pypi/django@5.0.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a3e2-se1v-2yb5
1
vulnerability VCID-nyc2-p1rp-xkb4
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.12
13
url pkg:pypi/django@5.0.13
purl pkg:pypi/django@5.0.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a3e2-se1v-2yb5
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.13
14
url pkg:pypi/django@5.1
purl pkg:pypi/django@5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-3d6k-rdsh-k7hm
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-7jbt-5zw2-vff2
4
vulnerability VCID-9udu-eqvn-mqbj
5
vulnerability VCID-a3e2-se1v-2yb5
6
vulnerability VCID-ax42-esfz-vud2
7
vulnerability VCID-ax7m-uv4s-zkc1
8
vulnerability VCID-chey-b3c1-pbe5
9
vulnerability VCID-em3c-ceug-cubp
10
vulnerability VCID-fbee-vj2y-cfeb
11
vulnerability VCID-jt9m-kd3k-uqca
12
vulnerability VCID-nyc2-p1rp-xkb4
13
vulnerability VCID-u15a-4ste-43cy
14
vulnerability VCID-vpgq-jhzc-j7h2
15
vulnerability VCID-xmq2-18at-y3gj
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1
15
url pkg:pypi/django@5.1.1
purl pkg:pypi/django@5.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-3d6k-rdsh-k7hm
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-7jbt-5zw2-vff2
4
vulnerability VCID-9udu-eqvn-mqbj
5
vulnerability VCID-a3e2-se1v-2yb5
6
vulnerability VCID-ax7m-uv4s-zkc1
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-em3c-ceug-cubp
9
vulnerability VCID-fbee-vj2y-cfeb
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-u15a-4ste-43cy
12
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.1
16
url pkg:pypi/django@5.1.2
purl pkg:pypi/django@5.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-3d6k-rdsh-k7hm
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-7jbt-5zw2-vff2
4
vulnerability VCID-9udu-eqvn-mqbj
5
vulnerability VCID-a3e2-se1v-2yb5
6
vulnerability VCID-ax7m-uv4s-zkc1
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-em3c-ceug-cubp
9
vulnerability VCID-fbee-vj2y-cfeb
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-u15a-4ste-43cy
12
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.2
17
url pkg:pypi/django@5.1.3
purl pkg:pypi/django@5.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1umb-2rxg-bbdk
1
vulnerability VCID-3d6k-rdsh-k7hm
2
vulnerability VCID-4vry-9jdm-nyg9
3
vulnerability VCID-7jbt-5zw2-vff2
4
vulnerability VCID-9udu-eqvn-mqbj
5
vulnerability VCID-a3e2-se1v-2yb5
6
vulnerability VCID-ax7m-uv4s-zkc1
7
vulnerability VCID-chey-b3c1-pbe5
8
vulnerability VCID-em3c-ceug-cubp
9
vulnerability VCID-fbee-vj2y-cfeb
10
vulnerability VCID-nyc2-p1rp-xkb4
11
vulnerability VCID-u15a-4ste-43cy
12
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.3
18
url pkg:pypi/django@5.1.4
purl pkg:pypi/django@5.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3d6k-rdsh-k7hm
1
vulnerability VCID-7jbt-5zw2-vff2
2
vulnerability VCID-9udu-eqvn-mqbj
3
vulnerability VCID-a3e2-se1v-2yb5
4
vulnerability VCID-ax7m-uv4s-zkc1
5
vulnerability VCID-chey-b3c1-pbe5
6
vulnerability VCID-em3c-ceug-cubp
7
vulnerability VCID-fbee-vj2y-cfeb
8
vulnerability VCID-nyc2-p1rp-xkb4
9
vulnerability VCID-u15a-4ste-43cy
10
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.4
19
url pkg:pypi/django@5.1.5
purl pkg:pypi/django@5.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3d6k-rdsh-k7hm
1
vulnerability VCID-7jbt-5zw2-vff2
2
vulnerability VCID-9udu-eqvn-mqbj
3
vulnerability VCID-a3e2-se1v-2yb5
4
vulnerability VCID-ax7m-uv4s-zkc1
5
vulnerability VCID-em3c-ceug-cubp
6
vulnerability VCID-fbee-vj2y-cfeb
7
vulnerability VCID-nyc2-p1rp-xkb4
8
vulnerability VCID-u15a-4ste-43cy
9
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.5
20
url pkg:pypi/django@5.1.6
purl pkg:pypi/django@5.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3d6k-rdsh-k7hm
1
vulnerability VCID-7jbt-5zw2-vff2
2
vulnerability VCID-9udu-eqvn-mqbj
3
vulnerability VCID-a3e2-se1v-2yb5
4
vulnerability VCID-ax7m-uv4s-zkc1
5
vulnerability VCID-em3c-ceug-cubp
6
vulnerability VCID-fbee-vj2y-cfeb
7
vulnerability VCID-nyc2-p1rp-xkb4
8
vulnerability VCID-u15a-4ste-43cy
9
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.6
21
url pkg:pypi/django@5.1.7
purl pkg:pypi/django@5.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3d6k-rdsh-k7hm
1
vulnerability VCID-7jbt-5zw2-vff2
2
vulnerability VCID-9udu-eqvn-mqbj
3
vulnerability VCID-a3e2-se1v-2yb5
4
vulnerability VCID-ax7m-uv4s-zkc1
5
vulnerability VCID-em3c-ceug-cubp
6
vulnerability VCID-fbee-vj2y-cfeb
7
vulnerability VCID-u15a-4ste-43cy
8
vulnerability VCID-vpgq-jhzc-j7h2
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.7
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27556.json
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27556.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27556
reference_id
reference_type
scores
0
value 0.00011
scoring_system epss
scoring_elements 0.01482
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27556
2
reference_url https://docs.djangoproject.com/en/dev/releases/security
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://docs.djangoproject.com/en/dev/releases/security
3
reference_url https://docs.djangoproject.com/en/dev/releases/security/
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T13:21:14Z/
url https://docs.djangoproject.com/en/dev/releases/security/
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/django/django
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/django/django
6
reference_url https://github.com/django/django/commit/2cb311f7b069723027fb5def4044d1816d7d2afd
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/2cb311f7b069723027fb5def4044d1816d7d2afd
7
reference_url https://github.com/django/django/commit/39e2297210d9d2938c75fc911d45f0e863dc4821
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/39e2297210d9d2938c75fc911d45f0e863dc4821
8
reference_url https://github.com/django/django/commit/8c6871b097b6c49d2a782c0d80d908bcbe2116f1
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/8c6871b097b6c49d2a782c0d80d908bcbe2116f1
9
reference_url https://github.com/django/django/commit/edc2716d01a6fdd84b173c02031695231bcee1f8
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/edc2716d01a6fdd84b173c02031695231bcee1f8
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-14.yaml
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-14.yaml
11
reference_url https://groups.google.com/g/django-announce
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T13:21:14Z/
url https://groups.google.com/g/django-announce
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-27556
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-27556
13
reference_url https://www.djangoproject.com/weblog/2025/apr/02/security-releases
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.djangoproject.com/weblog/2025/apr/02/security-releases
14
reference_url https://www.djangoproject.com/weblog/2025/apr/02/security-releases/
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T13:21:14Z/
url https://www.djangoproject.com/weblog/2025/apr/02/security-releases/
15
reference_url http://www.openwall.com/lists/oss-security/2025/04/02/2
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/04/02/2
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2356899
reference_id 2356899
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2356899
17
reference_url https://github.com/advisories/GHSA-wqfg-m96j-85vm
reference_id GHSA-wqfg-m96j-85vm
reference_type
scores
url https://github.com/advisories/GHSA-wqfg-m96j-85vm
Weaknesses
0
cwe_id 770
name Allocation of Resources Without Limits or Throttling
description The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity5.2
Risk_score2.6
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-a3e2-se1v-2yb5