OSV - Open Source Vulnerabilities

PYSEC-2026-201

PyPI/django

See record for full details

03 Jun

Fix available
Severity - 5.3 (Medium)

PYSEC-2026-200

PyPI/django

See record for full details

03 Jun

Fix available
Severity - 2.3 (Low)

PYSEC-2026-199

PyPI/django

See record for full details

03 Jun

Fix available
Severity - 4.3 (Medium)

PYSEC-2026-198

PyPI/django

See record for full details

03 Jun

Fix available
Severity - 5.3 (Medium)

PYSEC-2026-197

PyPI/django

See record for full details

03 Jun

Fix available
Severity - 2.3 (Low)

MAL-2026-3413

PyPI/django-b64-img

Malicious code in django-b64-img (PyPI)

10 May

No fix available

GHSA-67qg-7284-2277

PyPI/django-s3file

django-s3file is vulnerable to relative path traversal

05 May

Fix available
Severity - 9.9 (Critical)

GHSA-5hrc-gvxj-w55p

PyPI/django

Django Uses Cache Containing Sensitive Information

05 May

Fix available
Severity - 2.3 (Low)

GHSA-w26r-rmm8-9c29

PyPI/django

Django has an Improper Handling of Length Parameter Inconsistency

05 May

Fix available
Severity - 6.3 (Medium)

GHSA-7h2m-m8vj-598h

PyPI/django

Django Uses Persistent Cookies Containing Sensitive Information

05 May

Fix available
Severity - 2.3 (Low)

PYSEC-2026-55

PyPI/django

See record for full details

05 May

Fix available
Severity - 5.3 (Medium)

PYSEC-2026-54

PyPI/django

See record for full details

05 May

Fix available
Severity - 6.3 (Medium)

PYSEC-2026-50

PyPI/django

See record for full details

05 May

Fix available
Severity - 6.5 (Medium)

GHSA-qp2c-xqv6-phh6

PyPI/django-mdeditor

django-mdeditor is Missing Authentication for Critical Function

30 Apr

No fix available
Severity - 2.0 (Low)

GHSA-mmwr-2jhp-mc7j

PyPI/django

Django vulnerable to privilege abuse in ModelAdmin.list_editable

07 Apr

Fix available
Severity - 2.7 (Low)

GHSA-mvfq-ggxm-9mc5

PyPI/django

Django vulnerable to ASGI header spoofing via underscore/hyphen conflation

07 Apr

Fix available
Severity - 7.5 (High)