Search for packages
Package details: pkg:pypi/django@5.0.9
purl pkg:pypi/django@5.0.9
Next non-vulnerable version 5.0.14
Latest non-vulnerable version 5.2.2
Risk 4.4
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-4c4n-p117-sqcv
Aliases:
BIT-django-2025-26699
CVE-2025-26699
GHSA-p3fp-8748-vqfq
PYSEC-2025-13
django: Potential denial-of-service vulnerability in django.utils.text.wrap()
5.0.13
Affected by 1 other vulnerability.
5.1a1
Affected by 0 other vulnerabilities.
5.1.7
Affected by 3 other vulnerabilities.
5.2a1
Affected by 0 other vulnerabilities.
VCID-dpmr-57g2-aqhv
Aliases:
CVE-2025-27556
GHSA-wqfg-m96j-85vm
PYSEC-2025-14
django: Django DoS Unicode Attack
5.0.14
Affected by 0 other vulnerabilities.
5.1a1
Affected by 0 other vulnerabilities.
5.1.8
Affected by 2 other vulnerabilities.
5.2a1
Affected by 0 other vulnerabilities.
VCID-ewxh-f1q5-kyaa
Aliases:
BIT-django-2024-56374
CVE-2024-56374
GHSA-qcgg-j2x8-h9g8
PYSEC-2025-1
django: potential denial-of-service vulnerability in IPv6 validation
5.0.11
Affected by 2 other vulnerabilities.
5.1.5
Affected by 4 other vulnerabilities.
VCID-fuhn-4eep-23b5
Aliases:
BIT-django-2024-53908
CVE-2024-53908
GHSA-m9g8-fxxm-xg86
PYSEC-2024-157
Django SQL injection in HasKey(lhs, rhs) on Oracle
5.0.10
Affected by 3 other vulnerabilities.
5.1.4
Affected by 5 other vulnerabilities.
VCID-uzhs-cg7d-jycp
Aliases:
BIT-django-2024-53907
CVE-2024-53907
GHSA-8498-2h75-472j
PYSEC-2024-156
Django denial-of-service in django.utils.html.strip_tags()
5.0.10
Affected by 3 other vulnerabilities.
5.1.4
Affected by 5 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-c291-japf-r3a8 An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters. BIT-django-2024-45230
CVE-2024-45230
GHSA-5hgc-2vfp-mqvc
PYSEC-2024-102
VCID-dapt-wsva-ubfv An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password reset flows, allows remote attackers to enumerate user e-mail addresses by sending password reset requests and observing the outcome (only when e-mail sending is consistently failing). CVE-2024-45231
GHSA-rrqc-c2jx-6jgv

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:19:34.296210+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.3
2025-06-20T17:17:29.221095+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.3
2025-06-20T17:13:26.266052+00:00 GitLab Importer Affected by VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.3
2025-06-20T17:13:25.994773+00:00 GitLab Importer Affected by VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.3
2025-06-20T17:09:20.071205+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 36.1.3
2025-06-20T17:09:17.528787+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 36.1.3
2025-06-03T23:54:29.003930+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.0
2025-06-03T23:52:36.930487+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.0
2025-06-03T23:49:00.922774+00:00 GitLab Importer Affected by VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.0
2025-06-03T23:49:00.667428+00:00 GitLab Importer Affected by VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.0
2025-06-03T23:45:17.151418+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 36.1.0
2025-06-03T23:45:14.868557+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 36.1.0
2025-06-02T23:53:26.204816+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.2
2025-06-02T23:51:26.736682+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.2
2025-06-02T23:47:43.706746+00:00 GitLab Importer Affected by VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.2
2025-06-02T23:47:43.433602+00:00 GitLab Importer Affected by VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.2
2025-06-02T23:43:43.408067+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 36.1.2
2025-06-02T23:43:40.886757+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 36.1.2
2025-05-15T01:18:31.121437+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.0.0
2025-04-09T21:48:01.809729+00:00 PyPI Importer Affected by VCID-dpmr-57g2-aqhv https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-04-09T21:48:00.293605+00:00 PyPI Importer Affected by VCID-4c4n-p117-sqcv https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-04-09T21:46:45.778913+00:00 Pypa Importer Affected by VCID-dpmr-57g2-aqhv https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-14.yaml 36.0.0
2025-04-09T21:46:44.155091+00:00 Pypa Importer Affected by VCID-4c4n-p117-sqcv https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-13.yaml 36.0.0
2025-04-09T00:22:46.908750+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.0.0
2025-04-03T22:35:40.187374+00:00 GitLab Importer Affected by VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.0.0
2025-04-03T22:35:39.663919+00:00 GitLab Importer Affected by VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.0.0
2025-04-03T22:26:37.872906+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 36.0.0
2025-04-03T22:26:33.999388+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 36.0.0
2025-03-28T22:57:38.162090+00:00 PyPI Importer Affected by VCID-ewxh-f1q5-kyaa https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-03-28T22:57:37.678907+00:00 PyPI Importer Affected by VCID-fuhn-4eep-23b5 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-03-28T22:57:37.200175+00:00 PyPI Importer Affected by VCID-uzhs-cg7d-jycp https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-02-18T04:15:59.085949+00:00 GitLab Importer Affected by VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 35.1.0
2025-02-18T04:15:58.699398+00:00 GitLab Importer Affected by VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 35.1.0
2025-02-18T04:07:42.476176+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 35.1.0
2025-02-18T04:07:40.347419+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 35.1.0
2025-01-17T07:57:42.434158+00:00 PyPI Importer Affected by VCID-ewxh-f1q5-kyaa https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-17T07:57:41.955888+00:00 PyPI Importer Affected by VCID-fuhn-4eep-23b5 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-17T07:57:41.489530+00:00 PyPI Importer Affected by VCID-uzhs-cg7d-jycp https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-16T22:23:05.621126+00:00 Pypa Importer Affected by VCID-ewxh-f1q5-kyaa https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-1.yaml 35.1.0
2025-01-16T22:23:05.121398+00:00 Pypa Importer Affected by VCID-fuhn-4eep-23b5 https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2024-157.yaml 35.1.0
2025-01-16T22:23:04.619894+00:00 Pypa Importer Affected by VCID-uzhs-cg7d-jycp https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2024-156.yaml 35.1.0
2024-11-21T01:15:07.474410+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 35.0.0
2024-11-21T01:15:05.330227+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 35.0.0
2024-11-19T15:50:13.031066+00:00 GitLab Importer Fixing VCID-dapt-wsva-ubfv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45231.yml 34.3.2
2024-11-19T15:50:12.956541+00:00 GitLab Importer Fixing VCID-c291-japf-r3a8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-45230.yml 34.3.2
2024-11-19T00:46:50.246155+00:00 GithubOSV Importer Fixing VCID-c291-japf-r3a8 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-5hgc-2vfp-mqvc/GHSA-5hgc-2vfp-mqvc.json 34.3.2
2024-11-19T00:45:25.540212+00:00 GithubOSV Importer Fixing VCID-dapt-wsva-ubfv https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-rrqc-c2jx-6jgv/GHSA-rrqc-c2jx-6jgv.json 34.3.2
2024-10-09T18:02:05.482810+00:00 GHSA Importer Fixing VCID-dapt-wsva-ubfv https://github.com/advisories/GHSA-rrqc-c2jx-6jgv 34.0.2
2024-10-09T18:02:05.383138+00:00 GHSA Importer Fixing VCID-c291-japf-r3a8 https://github.com/advisories/GHSA-5hgc-2vfp-mqvc 34.0.2
2024-10-09T12:31:55.071331+00:00 Pypa Importer Fixing VCID-c291-japf-r3a8 https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2024-102.yaml 34.0.2
2024-10-09T09:57:43.627472+00:00 GithubOSV Importer Fixing VCID-c291-japf-r3a8 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-5hgc-2vfp-mqvc/GHSA-5hgc-2vfp-mqvc.json 34.0.2
2024-10-09T09:57:41.382489+00:00 GithubOSV Importer Fixing VCID-dapt-wsva-ubfv https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-rrqc-c2jx-6jgv/GHSA-rrqc-c2jx-6jgv.json 34.0.2
2024-10-09T03:48:19.653391+00:00 PyPI Importer Fixing VCID-c291-japf-r3a8 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 34.0.2