Latest Vulnerabilities Affecting Djangoproject products

Date	CVE	Title	CVSS
2019-06-03	CVE-2019-12308	Cross-Site Scripting (XSS) vulnerability in Djangoproject Django	Medium
2019-02-11	CVE-2019-6975	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in multiple products	Medium
2019-01-09	CVE-2019-3498	Input Validation vulnerability in multiple products	Medium
2018-10-02	CVE-2018-16984	Credentials Management vulnerability in Djangoproject Django 2.1	Medium
2018-08-03	CVE-2018-14574	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in multiple products	Medium
2018-03-09	CVE-2018-7537	Incorrect Regular Expression vulnerability in multiple products	Medium
2018-03-09	CVE-2018-7536	Incorrect Regular Expression vulnerability in multiple products	Medium
2018-02-05	CVE-2018-6188	Information Leak / Disclosure vulnerability in Canonical and Djangoproject products	Medium
2017-09-07	CVE-2017-12794	Cross-Site Scripting (XSS) vulnerability in Djangoproject Django	Medium
2017-04-04	CVE-2017-7234	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Djangoproject Django	Medium
2017-04-04	CVE-2017-7233	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Djangoproject Django	Medium
2016-12-09	CVE-2016-9013	Use of Hard-coded Credentials vulnerability in multiple products	High
2016-12-09	CVE-2016-9014	Permissions, Privileges, and Access Control vulnerability in multiple products	Medium
2016-10-03	CVE-2016-7401	Security Features vulnerability in multiple products	Medium
2016-08-05	CVE-2016-6186	Cross-Site Scripting (XSS) vulnerability in Debian and Djangoproject products	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.