Known Vulnerabilities for Django by Djangoproject
Listed below are 10 of the newest known vulnerabilities associated with "Django" by "Djangoproject".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44987 json | SysReptor is a fully customizable pentest reporting platform. Prior to version 2026.29, users with "User Admin" permissions c... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44201 json | Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, the Documents and Images... | Not Provided | 2026-05-11 | 2026-05-12 |
| CVE-2026-44200 json | Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited ... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-44199 json | Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited ... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-44198 json | Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the a... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-44197 json | Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the a... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42857 json | Open edX Platform enables the authoring and delivery of online learning at any scale. The HTML sanitizer clean_thread_html_bo... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42196 json | django-s3file is a lightweight file upload input for Django and Amazon S3. Prior to 7.0.2, S3FileMiddleware is vulnerable to ... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-41654 json | Weblate is a web based localization tool. Prior to version 5.17.1, an authenticated user with project.add permission (default... | Not Provided | 2026-05-07 | 2026-05-08 |
| CVE-2026-40353 json | wger is a free, open-source workout and fitness manager. In versions 2.5 and below, the attribution_link property in Abstract... | Not Provided | 2026-04-17 | 2026-04-20 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Djangoproject | Django | 3.1.8 | |||
| Application | Djangoproject | Django | 3.1.7 | |||
| Application | Djangoproject | Django | 3.1.6 | |||
| Application | Djangoproject | Django | 3.1.5 | |||
| Application | Djangoproject | Django | 3.1.4 | |||
| Application | Djangoproject | Django | 3.1.3 | |||
| Application | Djangoproject | Django | 3.1.2 | |||
| Application | Djangoproject | Django | 3.1.1 | |||
| Application | Djangoproject | Django | 3.1 | |||
| Application | Djangoproject | Django | 3.0.9 | |||
| Application | Djangoproject | Django | 3.0.8 | |||
| Application | Djangoproject | Django | 3.0.7 | |||
| Application | Djangoproject | Django | 3.0.4 | |||
| Application | Djangoproject | Django | 3.0.3 | |||
| Application | Djangoproject | Django | 3.0.2 | |||
| Application | Djangoproject | Django | 3.0.12 | |||
| Application | Djangoproject | Django | 3.0.11 | |||
| Application | Djangoproject | Django | 3.0.10 | |||
| Application | Djangoproject | Django | 3.0.1 | |||
| Application | Djangoproject | Django | 3.0 |