Search for packages
Package details: pkg:alpm/archlinux/python-django@3.2.10-1
purl pkg:alpm/archlinux/python-django@3.2.10-1
Next non-vulnerable version 4.0.2-1
Latest non-vulnerable version 5.1.11-1
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-n8u8-pmvh-aaam
Aliases:
BIT-2022-22818
BIT-django-2022-22818
CVE-2022-22818
GHSA-95rw-fx8r-36v6
PYSEC-2022-19
The {% debug %} template tag in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2 does not properly encode the current context. This may lead to XSS.
4.0.2-1
Affected by 0 other vulnerabilities.
VCID-ngaz-arbj-aaap
Aliases:
BIT-2022-23833
BIT-django-2022-23833
CVE-2022-23833
GHSA-6cw3-g6wv-c2xv
PYSEC-2022-20
An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could result in an infinite loop when parsing files.
4.0.2-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-93tt-u75s-aaab In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths. BIT-2021-44420
BIT-django-2021-44420
CVE-2021-44420
GHSA-v6rh-hp5x-86rv
PYSEC-2021-439

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:47:01.826119+00:00 Arch Linux Importer Fixing VCID-93tt-u75s-aaab https://security.archlinux.org/AVG-2605 36.0.0
2025-03-28T07:44:01.485691+00:00 Arch Linux Importer Affected by VCID-n8u8-pmvh-aaam https://security.archlinux.org/AVG-2808 36.0.0
2025-03-28T07:44:01.458516+00:00 Arch Linux Importer Affected by VCID-ngaz-arbj-aaap https://security.archlinux.org/AVG-2808 36.0.0
2024-09-18T02:02:24.270505+00:00 Arch Linux Importer Fixing VCID-93tt-u75s-aaab https://security.archlinux.org/AVG-2605 34.0.1
2024-09-18T01:59:09.748446+00:00 Arch Linux Importer Affected by VCID-n8u8-pmvh-aaam https://security.archlinux.org/AVG-2808 34.0.1
2024-09-18T01:59:09.723078+00:00 Arch Linux Importer Affected by VCID-ngaz-arbj-aaap https://security.archlinux.org/AVG-2808 34.0.1
2024-01-03T22:28:25.627804+00:00 Arch Linux Importer Fixing VCID-93tt-u75s-aaab https://security.archlinux.org/AVG-2605 34.0.0rc1
2024-01-03T22:25:27.576746+00:00 Arch Linux Importer Affected by VCID-n8u8-pmvh-aaam https://security.archlinux.org/AVG-2808 34.0.0rc1
2024-01-03T22:25:27.557508+00:00 Arch Linux Importer Affected by VCID-ngaz-arbj-aaap https://security.archlinux.org/AVG-2808 34.0.0rc1