Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Web Framework

Django

Django is a high-level Python Web framework that encourages rapid development and clean pragmatic design. Built by experienced developers it takes care of much of the hassle of Web development so you can focus on writing your app without needing to reinvent the wheel. Itrsquos free and open source.

Official Site:

https://www.djangoproject.com/

Severity Summary:

Critical: 11 High: 35 Medium: 62 Low: 2
Reference
Title
Severity
CVE-2024-41989
Django Vulnerability
High
CVE-2024-41990
Django Vulnerability
High
CVE-2024-41991
Django Improper Validation of Specified Quantity in Input Vulnerability
High
CVE-2024-45230
Django Vulnerability
High
CVE-2023-23969
Django Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2025-32873
Django Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2018-6188
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2019-14233
Django Uncontrolled Resource Consumption Vulnerability
High
CVE-2015-5145
Django Resource Management Errors Vulnerability
High
CVE-2016-7401
Django 7PK - Security Features Vulnerability
High
CVE-2016-2512
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
High
CVE-2019-6975
Django Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2019-14232
Django Uncontrolled Resource Consumption Vulnerability
High
CVE-2016-9014
Django Permissions Privileges and Access Controls Vulnerability
High
CVE-2019-14235
Django Uncontrolled Recursion Vulnerability
High
CVE-2020-9402
Django Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2021-32052
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-22818
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-23336
Django Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2016-2048
Django Improper Access Control Vulnerability
Medium
CVE-2021-28658
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2016-6186
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-45452
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2009-3695
Django Other Vulnerability
Medium
CVE-2010-3082
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-3281
Django Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2015-5144
Django Improper Input Validation Vulnerability
Medium
CVE-2017-7233
Django URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2017-7234
Django URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2017-12794
Django Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium