Search for packages
| purl | pkg:alpm/archlinux/python-django@4.0.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-n8u8-pmvh-aaam | The {% debug %} template tag in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2 does not properly encode the current context. This may lead to XSS. |
BIT-2022-22818
BIT-django-2022-22818 CVE-2022-22818 GHSA-95rw-fx8r-36v6 PYSEC-2022-19 |
| VCID-ngaz-arbj-aaap | An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could result in an infinite loop when parsing files. |
BIT-2022-23833
BIT-django-2022-23833 CVE-2022-23833 GHSA-6cw3-g6wv-c2xv PYSEC-2022-20 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:44:01.490588+00:00 | Arch Linux Importer | Fixing | VCID-n8u8-pmvh-aaam | https://security.archlinux.org/AVG-2808 | 36.0.0 |
| 2025-03-28T07:44:01.463454+00:00 | Arch Linux Importer | Fixing | VCID-ngaz-arbj-aaap | https://security.archlinux.org/AVG-2808 | 36.0.0 |
| 2024-09-18T01:59:09.752902+00:00 | Arch Linux Importer | Fixing | VCID-n8u8-pmvh-aaam | https://security.archlinux.org/AVG-2808 | 34.0.1 |
| 2024-09-18T01:59:09.728064+00:00 | Arch Linux Importer | Fixing | VCID-ngaz-arbj-aaap | https://security.archlinux.org/AVG-2808 | 34.0.1 |
| 2024-01-03T22:25:27.581480+00:00 | Arch Linux Importer | Fixing | VCID-n8u8-pmvh-aaam | https://security.archlinux.org/AVG-2808 | 34.0.0rc1 |
| 2024-01-03T22:25:27.562146+00:00 | Arch Linux Importer | Fixing | VCID-ngaz-arbj-aaap | https://security.archlinux.org/AVG-2808 | 34.0.0rc1 |