Django-cms

Latest version: v4.1.4

CVE/PVE	Vulnerability ID	Advisory	Affected versions	Severity	Severity Score
CVE-2021-44649	44516	Django-cms versions 3.7.4, 3.6.1, 3.5.4 and 3.4.7 include a fix for C…	<3.4.7 >=3.5.0a0,<3.5.4 >=3.6.0a0,<3.6.1 >=3.7.0a0,<3.7.4	MEDIUM	5.4
PVE-2021-34226	34226	Django-cms 3.3.4 and 3.4.3 fix a security vulnerability in the page r…	<3.3.4 >=3.4.0,<3.4.3	HIDDEN	X.Y
PVE-2022-49495	49495	Django-cms 3.3.4 and 3.4.3 fix a vulnerability where the 'next' param…	<3.3.4 >=3.4.0,<3.4.3	HIDDEN	X.Y
PVE-2021-25746	25746	Django-cms 3.2.4 and 3.1.6 address security concerns in render_model*…	<3.1.6 >=3.2.0,<3.2.4	HIDDEN	X.Y
CVE-2024-11319	74253	Affected versions of django-cms are vulnerable to Cross-Site Scriptin…	>= 3.11.7,<3.11.9 >= 4.1.2,<4.1.4	MEDIUM	4.8
CVE-2015-5081	35628	Cross-site request forgery (CSRF) vulnerability in django CMS before …	<3.0.14 >3.1,<3.1.1	HIGH	8.8
PVE-2024-70718	70718	Django-cms 4.0 includes a security enhancement to prevent JavaScript …	<4.0	-	-
PVE-2022-44745	44745	Django-cms 3.5.3 fixes an incorrect handling of permissions. https:/…	<3.5.3	-	-
PVE-2021-25743	25743	Django-cms 3.0.14 fixes an issue where privileged users could be tric…	<3.0.14	HIDDEN	X.Y
PVE-2021-25742	25742	Django-cms before 2.1.4 fixes a XSS issue in Text Plugins. https://g…	<2.1.4	HIDDEN	X.Y
PVE-2021-25741	25741	Django-cms 2.1.3 fixes a serious security issue in PlaceholderAdmin t…	<2.1.3	HIDDEN	X.Y