Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Framework

Django

Django is a high-level Python Web framework that encourages rapid development and clean pragmatic design. Built by experienced developers it takes care of much of the hassle of Web development so you can focus on writing your app without needing to reinvent the wheel. Itrsquos free and open source.

Official Site:

https://www.djangoproject.com/

Severity Summary:

Critical: 15 High: 49 Medium: 76 Low: 4
Reference
Title
Severity
CVE-2025-64458
Django Inefficient Algorithmic Complexity Vulnerability
High
CVE-2024-56374
Django Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2025-57833
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2025-64460
Django Inefficient Algorithmic Complexity Vulnerability
High
CVE-2026-5766
Django Improper Handling of Length Parameter Inconsistency Vulnerability
Medium
CVE-2026-6907
Django Use of Cache Containing Sensitive Information Vulnerability
Medium
CVE-2021-45452
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2026-33033
Django Inefficient Algorithmic Complexity Vulnerability
Medium
CVE-2024-39329
Django Observable Timing Discrepancy Vulnerability
Medium
CVE-2024-39330
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2025-13372
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2022-22818
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-27351
Django Inefficient Regular Expression Complexity Vulnerability
Medium
CVE-2025-48432
Django Improper Output Neutralization for Logs Vulnerability
Medium
CVE-2024-45231
Django Vulnerability
Medium
CVE-2025-13473
Django Observable Timing Discrepancy Vulnerability
Medium
CVE-2026-1207
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2025-59682
Django Relative Path Traversal Vulnerability
Medium
CVE-2026-1312
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2026-1287
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2011-0696
Django Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-23336
Django Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2016-6186
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-0221
Django Resource Management Errors Vulnerability
Medium
CVE-2015-0222
Django DEPRECATED: Code Vulnerability
Medium
CVE-2015-2241
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-2316
Django Resource Management Errors Vulnerability
Medium
CVE-2015-2317
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-3982
Django Other Vulnerability
Medium
CVE-2015-5144
Django Improper Input Validation Vulnerability
Medium