Search for packages
Package details: pkg:pypi/django@5.1.4
purl pkg:pypi/django@5.1.4
Next non-vulnerable version 5.1.10
Latest non-vulnerable version 5.2.2
Risk 3.4
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-4c4n-p117-sqcv
Aliases:
BIT-django-2025-26699
CVE-2025-26699
GHSA-p3fp-8748-vqfq
PYSEC-2025-13
django: Potential denial-of-service vulnerability in django.utils.text.wrap()
5.1.7
Affected by 3 other vulnerabilities.
5.2a1
Affected by 0 other vulnerabilities.
VCID-6eh4-7hcj-duft
Aliases:
BIT-django-2025-32873
CVE-2025-32873
GHSA-8j24-cjrq-gr2m
PYSEC-2025-37
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.strip_tags() function is vulnerable to a potential denial-of-service (slow performance) when processing inputs containing large sequences of incomplete HTML tags. The template filter striptags is also vulnerable, because it is built on top of strip_tags().
5.1.9
Affected by 1 other vulnerability.
5.2.1
Affected by 1 other vulnerability.
VCID-dpmr-57g2-aqhv
Aliases:
CVE-2025-27556
GHSA-wqfg-m96j-85vm
PYSEC-2025-14
django: Django DoS Unicode Attack
5.1.8
Affected by 2 other vulnerabilities.
5.2a1
Affected by 0 other vulnerabilities.
VCID-ewxh-f1q5-kyaa
Aliases:
BIT-django-2024-56374
CVE-2024-56374
GHSA-qcgg-j2x8-h9g8
PYSEC-2025-1
django: potential denial-of-service vulnerability in IPv6 validation
5.1.5
Affected by 4 other vulnerabilities.
VCID-zdny-8vuh-9ycv
Aliases:
CVE-2025-48432
GHSA-7xr5-9hcq-chf9
PYSEC-2025-47
An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2.22. Internal HTTP response logging does not escape request.path, which allows remote attackers to potentially manipulate log output via crafted URLs. This may lead to log injection or forgery when logs are viewed in terminals or processed by external systems.
5.1.10
Affected by 0 other vulnerabilities.
5.2.2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-fuhn-4eep-23b5 Django SQL injection in HasKey(lhs, rhs) on Oracle BIT-django-2024-53908
CVE-2024-53908
GHSA-m9g8-fxxm-xg86
PYSEC-2024-157
VCID-uzhs-cg7d-jycp Django denial-of-service in django.utils.html.strip_tags() BIT-django-2024-53907
CVE-2024-53907
GHSA-8498-2h75-472j
PYSEC-2024-156

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T19:34:33.967410+00:00 PyPI Importer Affected by VCID-6eh4-7hcj-duft https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.1.3
2025-06-20T17:21:13.874297+00:00 GitLab Importer Affected by VCID-6eh4-7hcj-duft https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-32873.yml 36.1.3
2025-06-20T17:19:34.329765+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.3
2025-06-20T17:17:29.246908+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.3
2025-06-20T17:13:26.287441+00:00 GitLab Importer Fixing VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.3
2025-06-20T17:13:26.016503+00:00 GitLab Importer Fixing VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.3
2025-06-08T23:53:14.187357+00:00 GitLab Importer Affected by VCID-6eh4-7hcj-duft https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-32873.yml 36.1.0
2025-06-05T14:51:44.550372+00:00 PyPI Importer Affected by VCID-zdny-8vuh-9ycv https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.1.0
2025-06-05T11:19:58.537319+00:00 Pypa Importer Affected by VCID-zdny-8vuh-9ycv https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-47.yaml 36.1.0
2025-06-03T23:54:29.028686+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.0
2025-06-03T23:52:36.951094+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.0
2025-06-03T23:49:00.939506+00:00 GitLab Importer Fixing VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.0
2025-06-03T23:49:00.684697+00:00 GitLab Importer Fixing VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.0
2025-06-02T23:53:26.236522+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.1.2
2025-06-02T23:51:26.758031+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.1.2
2025-06-02T23:47:43.727835+00:00 GitLab Importer Fixing VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.1.2
2025-06-02T23:47:43.455412+00:00 GitLab Importer Fixing VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.1.2
2025-05-15T01:18:31.209126+00:00 GitLab Importer Affected by VCID-dpmr-57g2-aqhv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-27556.yml 36.0.0
2025-05-08T09:02:04.888592+00:00 PyPI Importer Affected by VCID-6eh4-7hcj-duft https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-05-08T09:00:57.524808+00:00 Pypa Importer Affected by VCID-6eh4-7hcj-duft https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-37.yaml 36.0.0
2025-04-09T21:48:01.854272+00:00 PyPI Importer Affected by VCID-dpmr-57g2-aqhv https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-04-09T21:48:00.332593+00:00 PyPI Importer Affected by VCID-4c4n-p117-sqcv https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-04-09T21:46:45.827188+00:00 Pypa Importer Affected by VCID-dpmr-57g2-aqhv https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-14.yaml 36.0.0
2025-04-09T21:46:44.191285+00:00 Pypa Importer Affected by VCID-4c4n-p117-sqcv https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-13.yaml 36.0.0
2025-04-09T00:22:46.980055+00:00 GitLab Importer Affected by VCID-4c4n-p117-sqcv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2025-26699.yml 36.0.0
2025-04-03T22:35:40.240355+00:00 GitLab Importer Fixing VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 36.0.0
2025-04-03T22:35:39.718215+00:00 GitLab Importer Fixing VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 36.0.0
2025-03-28T22:57:38.191679+00:00 PyPI Importer Affected by VCID-ewxh-f1q5-kyaa https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-03-28T22:57:37.963820+00:00 PyPI Importer Fixing VCID-fuhn-4eep-23b5 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-03-28T22:57:37.491495+00:00 PyPI Importer Fixing VCID-uzhs-cg7d-jycp https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 36.0.0
2025-01-17T07:57:42.463021+00:00 PyPI Importer Affected by VCID-ewxh-f1q5-kyaa https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-17T07:57:42.238080+00:00 PyPI Importer Fixing VCID-fuhn-4eep-23b5 https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-17T07:57:41.774828+00:00 PyPI Importer Fixing VCID-uzhs-cg7d-jycp https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 35.1.0
2025-01-17T02:47:55.096475+00:00 GHSA Importer Fixing VCID-fuhn-4eep-23b5 https://github.com/advisories/GHSA-m9g8-fxxm-xg86 35.1.0
2025-01-17T02:47:54.844113+00:00 GHSA Importer Fixing VCID-uzhs-cg7d-jycp https://github.com/advisories/GHSA-8498-2h75-472j 35.1.0
2025-01-16T23:28:59.739035+00:00 GitLab Importer Fixing VCID-fuhn-4eep-23b5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53908.yml 35.1.0
2025-01-16T23:28:59.640690+00:00 GitLab Importer Fixing VCID-uzhs-cg7d-jycp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/Django/CVE-2024-53907.yml 35.1.0
2025-01-16T22:23:05.653087+00:00 Pypa Importer Affected by VCID-ewxh-f1q5-kyaa https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2025-1.yaml 35.1.0
2025-01-16T22:23:05.411601+00:00 Pypa Importer Fixing VCID-fuhn-4eep-23b5 https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2024-157.yaml 35.1.0
2025-01-16T22:23:04.917618+00:00 Pypa Importer Fixing VCID-uzhs-cg7d-jycp https://github.com/pypa/advisory-database/blob/main/vulns/django/PYSEC-2024-156.yaml 35.1.0
2025-01-16T20:08:43.109720+00:00 GithubOSV Importer Fixing VCID-uzhs-cg7d-jycp https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/12/GHSA-8498-2h75-472j/GHSA-8498-2h75-472j.json 35.1.0
2025-01-16T20:08:37.841489+00:00 GithubOSV Importer Fixing VCID-fuhn-4eep-23b5 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/12/GHSA-m9g8-fxxm-xg86/GHSA-m9g8-fxxm-xg86.json 35.1.0
2024-12-11T16:37:52.630694+00:00 GithubOSV Importer Fixing VCID-uzhs-cg7d-jycp https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/12/GHSA-8498-2h75-472j/GHSA-8498-2h75-472j.json 35.0.0
2024-12-11T16:32:58.365895+00:00 GithubOSV Importer Fixing VCID-fuhn-4eep-23b5 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/12/GHSA-m9g8-fxxm-xg86/GHSA-m9g8-fxxm-xg86.json 35.0.0
2024-12-07T13:04:39.171857+00:00 GHSA Importer Fixing VCID-fuhn-4eep-23b5 https://github.com/advisories/GHSA-m9g8-fxxm-xg86 35.0.0
2024-12-07T13:04:38.548820+00:00 GHSA Importer Fixing VCID-uzhs-cg7d-jycp https://github.com/advisories/GHSA-8498-2h75-472j 35.0.0