Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Framework

Django

Django is a high-level Python Web framework that encourages rapid development and clean pragmatic design. Built by experienced developers it takes care of much of the hassle of Web development so you can focus on writing your app without needing to reinvent the wheel. Itrsquos free and open source.

Official Site:

https://www.djangoproject.com/

Severity Summary:

Critical: 14 High: 47 Medium: 72 Low: 3
Reference
Title
Severity
CVE-2020-9402
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2019-19118
Django Incorrect Default Permissions Vulnerability
Medium
CVE-2015-5963
Django Resource Management Errors Vulnerability
Medium
CVE-2015-5964
Django Resource Management Errors Vulnerability
Medium
CVE-2015-8213
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2021-3281
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2016-2048
Django Improper Access Control Vulnerability
Medium
CVE-2025-13473
Django Observable Timing Discrepancy Vulnerability
Medium
CVE-2016-6186
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-13596
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2026-1207
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2017-7233
Django URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2017-7234
Django URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2017-12794
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-45231
Django Vulnerability
Medium
CVE-2020-13254
Django Improper Certificate Validation Vulnerability
Medium
CVE-2018-7536
Django Incorrect Regular Expression Vulnerability
Medium
CVE-2018-7537
Django Incorrect Regular Expression Vulnerability
Medium
CVE-2018-14574
Django URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2024-39330
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2024-39329
Django Observable Timing Discrepancy Vulnerability
Medium
CVE-2014-1418
Django Vulnerability
Medium
CVE-2019-3498
Django Improper Input Validation Vulnerability
Medium
CVE-2026-1287
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2019-12308
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-12781
Django Cleartext Transmission of Sensitive Information Vulnerability
Medium
CVE-2026-1312
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2024-27351
Django Inefficient Regular Expression Complexity Vulnerability
Medium
CVE-2025-48432
Django Improper Output Neutralization for Logs Vulnerability
Medium
CVE-2025-13372
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium