Python Library Django 4.2.x < 4.2.22 / 5.1.x < 5.1.10 / 5.2.x < 5.2.2 Log Injection

The detected version of the Django Python package, Django, is 4.2.x prior to 4.2.22, 5.1.x prior to 5.1.10 or 5.2.x prior to 5.2.2. It is, therefore, affected by a log injection vulnerability as disclosed in Django's June 4th, 2025 security advisory. Internal HTTP response logging does not escape...

Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability - Windows

Django is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; ...

CVE-2013-4315

Directory traversal vulnerability in Django 1.4.x before 1.4.7, 1.5.x before 1.5.3, and 1.6.x before 1.6 beta 3 allows remote attackers to read arbitrary files via a file path in the ALLOWEDINCLUDEROOTS setting followed by a .. dot dot in a ssi template tag...