Search for packages
Package details: pkg:pypi/django@1.0
purl pkg:pypi/django@1.0
Tags Ghost
Next non-vulnerable version 4.2.22
Latest non-vulnerable version 5.2.2
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-e394-dfbt-aaaj
Aliases:
CVE-2009-2659
GHSA-9xg7-gg9m-rmq9
PYSEC-2009-3
The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected "static media files," which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a crafted URL.
1.0.3
Affected by 45 other vulnerabilities.
1.1
Affected by 44 other vulnerabilities.
VCID-z1hp-6qm3-aaac
Aliases:
CVE-2009-3695
GHSA-p6m5-h7pp-v2x5
PYSEC-2009-4
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a crafted (1) EmailField (email address) or (2) URLField (URL) that triggers a large amount of backtracking in a regular expression.
1.0.4
Affected by 44 other vulnerabilities.
1.1.1
Affected by 43 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-04-09T21:35:03.149727+00:00 GHSA Importer Fixing VCID-3b2a-xekj-aaam https://github.com/advisories/GHSA-qc99-g3wm-hgxr 36.0.0
2025-04-09T21:35:03.108837+00:00 GHSA Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/advisories/GHSA-mwv2-398h-v489 36.0.0
2025-04-09T15:10:09.919223+00:00 GithubOSV Importer Fixing VCID-3b2a-xekj-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qc99-g3wm-hgxr/GHSA-qc99-g3wm-hgxr.json 36.0.0
2025-04-09T15:10:09.856917+00:00 GithubOSV Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mwv2-398h-v489/GHSA-mwv2-398h-v489.json 36.0.0
2024-10-14T21:47:32.023448+00:00 GitLab Importer Fixing VCID-qstw-3rrn-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2007-0405.yml 34.0.2
2024-10-14T21:47:31.984261+00:00 GitLab Importer Fixing VCID-3b2a-xekj-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2007-0404.yml 34.0.2
2024-09-18T09:14:24.223143+00:00 GithubOSV Importer Fixing VCID-3b2a-xekj-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qc99-g3wm-hgxr/GHSA-qc99-g3wm-hgxr.json 34.0.1
2024-09-18T09:11:26.687446+00:00 GithubOSV Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mwv2-398h-v489/GHSA-mwv2-398h-v489.json 34.0.1
2024-09-17T22:26:48.723048+00:00 GitLab Importer Affected by VCID-e394-dfbt-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2009-2659.yml 34.0.1
2024-09-17T22:26:47.448680+00:00 GitLab Importer Affected by VCID-z1hp-6qm3-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2009-3695.yml 34.0.1
2024-09-17T22:13:21.411538+00:00 GHSA Importer Affected by VCID-e394-dfbt-aaaj https://github.com/advisories/GHSA-9xg7-gg9m-rmq9 34.0.1
2024-09-17T22:12:48.210394+00:00 GHSA Importer Fixing VCID-3b2a-xekj-aaam https://github.com/advisories/GHSA-qc99-g3wm-hgxr 34.0.1
2024-09-17T22:12:48.169819+00:00 GHSA Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/advisories/GHSA-mwv2-398h-v489 34.0.1
2024-09-17T22:12:00.790086+00:00 GHSA Importer Affected by VCID-z1hp-6qm3-aaac https://github.com/advisories/GHSA-p6m5-h7pp-v2x5 34.0.1
2024-05-21T23:37:07.228936+00:00 GithubOSV Importer Fixing VCID-3b2a-xekj-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qc99-g3wm-hgxr/GHSA-qc99-g3wm-hgxr.json 34.0.0rc4
2024-05-21T23:37:02.107175+00:00 GithubOSV Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mwv2-398h-v489/GHSA-mwv2-398h-v489.json 34.0.0rc4
2024-05-17T13:03:31.028742+00:00 GHSA Importer Fixing VCID-3b2a-xekj-aaam https://github.com/advisories/GHSA-qc99-g3wm-hgxr 34.0.0rc4
2024-05-17T13:03:30.989180+00:00 GHSA Importer Fixing VCID-qstw-3rrn-aaaf https://github.com/advisories/GHSA-mwv2-398h-v489 34.0.0rc4
2024-02-10T15:38:42.320295+00:00 GitLab Importer Affected by VCID-e394-dfbt-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2009-2659.yml 34.0.0rc2
2024-02-10T15:38:42.205453+00:00 GitLab Importer Affected by VCID-z1hp-6qm3-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2009-3695.yml 34.0.0rc2
2024-02-08T23:36:12.407500+00:00 GHSA Importer Affected by VCID-e394-dfbt-aaaj https://github.com/advisories/GHSA-9xg7-gg9m-rmq9 34.0.0rc2
2024-02-08T23:36:12.277270+00:00 GHSA Importer Affected by VCID-z1hp-6qm3-aaac https://github.com/advisories/GHSA-p6m5-h7pp-v2x5 34.0.0rc2