PyPI package
django-rest-framework
pkg:pypi/django-rest-framework
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-25045 | — | < 3.9.1 | 3.9.1 | Jul 23, 2022 | Django REST framework (aka django-rest-framework) before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping. |
- CVE-2018-25045Jul 23, 2022affected < 3.9.1fixed 3.9.1
Django REST framework (aka django-rest-framework) before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping.