Search for packages
| purl | pkg:deb/debian/python-django@1.6.5-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-bgjt-c6sa-pfaj | The django.util.http.is_safe_url function in Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly validate URLs, which allows remote attackers to conduct open redirect attacks via a malformed URL, as demonstrated by "http:\\\djangoproject.com." |
CVE-2014-3730
GHSA-vq3h-3q7v-9prw PYSEC-2014-20 |
| VCID-q64b-r7td-2yab | Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly include the (1) Vary: Cookie or (2) Cache-Control header in responses, which allows remote attackers to obtain sensitive information or poison the cache via a request from certain browsers. |
CVE-2014-1418
GHSA-q7q2-qf2q-rw3w PYSEC-2014-19 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T08:57:09.935761+00:00 | Debian Importer | Fixing | VCID-q64b-r7td-2yab | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T08:50:40.681742+00:00 | Debian Importer | Fixing | VCID-bgjt-c6sa-pfaj | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-11T18:00:28.412840+00:00 | Debian Importer | Fixing | VCID-q64b-r7td-2yab | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-11T17:56:30.402221+00:00 | Debian Importer | Fixing | VCID-bgjt-c6sa-pfaj | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:50:40.788211+00:00 | Debian Importer | Fixing | VCID-bgjt-c6sa-pfaj | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:50:40.747072+00:00 | Debian Importer | Fixing | VCID-q64b-r7td-2yab | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |