VulnerableCode Package Details - pkg:deb/debian/python-django@1.7.9-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-a715-2qks-wyhn	The session backends in Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 allows remote attackers to cause a denial of service (session store consumption) via multiple requests with unique session keys.	CVE-2015-5143 GHSA-h582-2pch-3xv3 PYSEC-2015-20
VCID-sbr6-pybe-dubq	Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an (1) email message to the EmailValidator, a (2) URL to the URLValidator, or unspecified vectors to the (3) validate_ipv4_address or (4) validate_slug validator.	CVE-2015-5144 GHSA-q5qw-4364-5hhm PYSEC-2015-10

Vulnerability

Summary

Aliases

VCID-a715-2qks-wyhn

The session backends in Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 allows remote attackers to cause a denial of service (session store consumption) via multiple requests with unique session keys.

CVE-2015-5143
GHSA-h582-2pch-3xv3
PYSEC-2015-20

VCID-sbr6-pybe-dubq

Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an (1) email message to the EmailValidator, a (2) URL to the URLValidator, or unspecified vectors to the (3) validate_ipv4_address or (4) validate_slug validator.

CVE-2015-5144
GHSA-q5qw-4364-5hhm
PYSEC-2015-10

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T10:38:53.522662+00:00	Debian Importer	Fixing	VCID-sbr6-pybe-dubq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:59:04.956832+00:00	Debian Importer	Fixing	VCID-a715-2qks-wyhn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T18:15:31.803589+00:00	Debian Importer	Fixing	VCID-sbr6-pybe-dubq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:01:32.625501+00:00	Debian Importer	Fixing	VCID-a715-2qks-wyhn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:41.253807+00:00	Debian Importer	Fixing	VCID-sbr6-pybe-dubq	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:50:41.212243+00:00	Debian Importer	Fixing	VCID-a715-2qks-wyhn	https://security-tracker.debian.org/tracker/data/json	38.1.0