Search for packages
| purl | pkg:pypi/django@0.91 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-v466-zd6u-dqce
Aliases: CVE-2008-2302 GHSA-54qj-48vx-cr9f PYSEC-2008-1 |
Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 45 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T16:00:34.550305+00:00 | GHSA Importer | Affected by | VCID-v466-zd6u-dqce | https://github.com/advisories/GHSA-54qj-48vx-cr9f | 38.0.0 |
| 2026-04-01T12:49:58.639337+00:00 | GitLab Importer | Affected by | VCID-v466-zd6u-dqce | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2008-2302.yml | 38.0.0 |