Known Vulnerabilities for Django by Djangoproject
Listed below are 10 of the newest known vulnerabilities associated with "Django" by "Djangoproject".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54263 json | Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, reflected c... | Not Provided | 2026-07-01 | 2026-07-06 |
| CVE-2026-54262 json | Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, a low-level... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-54261 json | Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, due to a mi... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-54260 json | Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, an authenti... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-54259 json | Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, the Documen... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-53878 json | An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. `DomainNameValidator` does not prohibit newlines in... | Not Provided | 2026-07-07 | 2026-07-07 |
| CVE-2026-53877 json | An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. `django.contrib.gis.gdal.GDALRaster` over-reads its... | Not Provided | 2026-07-07 | 2026-07-07 |
| CVE-2026-48588 json | An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. `UpdateCacheMiddleware` and the `cache_page()` deco... | Not Provided | 2026-07-07 | 2026-07-07 |
| CVE-2026-48587 json | An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6. `django.utils.cache.has_vary_header()` in Django do... | Not Provided | 2026-06-03 | 2026-06-03 |
| CVE-2026-44987 json | SysReptor is a fully customizable pentest reporting platform. Prior to version 2026.29, users with "User Admin" permissions c... | Not Provided | 2026-05-08 | 2026-05-12 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Djangoproject | Django | 3.1.8 | |||
| Application | Djangoproject | Django | 3.1.7 | |||
| Application | Djangoproject | Django | 3.1.6 | |||
| Application | Djangoproject | Django | 3.1.5 | |||
| Application | Djangoproject | Django | 3.1.4 | |||
| Application | Djangoproject | Django | 3.1.3 | |||
| Application | Djangoproject | Django | 3.1.2 | |||
| Application | Djangoproject | Django | 3.1.1 | |||
| Application | Djangoproject | Django | 3.1 | |||
| Application | Djangoproject | Django | 3.0.9 | |||
| Application | Djangoproject | Django | 3.0.8 | |||
| Application | Djangoproject | Django | 3.0.7 | |||
| Application | Djangoproject | Django | 3.0.4 | |||
| Application | Djangoproject | Django | 3.0.3 | |||
| Application | Djangoproject | Django | 3.0.2 | |||
| Application | Djangoproject | Django | 3.0.12 | |||
| Application | Djangoproject | Django | 3.0.11 | |||
| Application | Djangoproject | Django | 3.0.10 | |||
| Application | Djangoproject | Django | 3.0.1 | |||
| Application | Djangoproject | Django | 3.0 |