Workflow

Jinja2

Latest version: v3.1.4

The latest version of jinja2 with no known security vulnerabilities is . We recommend installing version .

The information on this page was curated by experts in our Cybersecurity Intelligence Team.

Latest release
v3.1.4 at May 6, 2024
License
BSD-2-Clause (BSD 2-Clause "Simplified" License)

Description

A very fast and expressive template engine.

Resources

Vulnerabilities (8)

See all vulnerabilities
CVE-2024-34064
Affected versions:

<3.1.4

Jinja is an extensible templating engine. The `xmlattr` filter…
CVE-2024-22195
Affected versions:

<3.1.3

Jinja2 before 3.1.3 is affected by a Cross-Site Scripting vuln…
CVE-2016-10745
Affected versions:

<2.8.1

Jinja2 2.8.1 sandboxes format expressions with the same rules …
CVE-2014-1402
Affected versions:

<2.7.2

Jinja2 2.7.2 includes a fix for CVE-2014-1402: The default con…
CVE-2020-28493
Affected versions:

<2.11.3

This affects the package jinja2 from 0.0.0 and before 2.11.3. …
CVE-2014-0012
Affected versions:

>=0,<2.7.3

FileSystemBytecodeCache in Jinja2 2.7.2 does not properly crea…

Versions (50)

See all versions

Has known vulnerabilities

  • 3.1.4
  • 3.1.3
  • 3.1.2
  • 3.1.1
  • 3.1.0
  • 3.0.3
  • 3.0.2
  • 3.0.1
  • 3.0.0
  • 3.0.0rc2
  • 3.0.0rc1
  • 3.0.0a1
  • 2.11.3
  • 2.11.2
  • 2.11.1
  • 2.11.0
  • 2.10.3
  • 2.10.2
  • 2.10.1
  • 2.10