VYPR

PyPI package

channels

pkg:pypi/channels

Vulnerabilities (1)

  • CVE-2020-35681HigFeb 22, 2021
    affected >= 3.0.0, < 3.0.3fixed 3.0.3

    Django Channels 3.x before 3.0.3 allows remote attackers to obtain sensitive information from a different request scope. The legacy channels.http.AsgiHandler class, used for handling HTTP type requests in an ASGI environment prior to Django 3.0, did not correctly separate request