Workflow

Jinja2

Latest version: v3.1.4

The latest version of jinja2 with no known security vulnerabilities is 3.1.4. We recommend installing version 3.1.4.

The information on this page was curated by experts in our Cybersecurity Intelligence Team.

Latest release
v3.1.4 at May 6, 2024
License
BSD-2-Clause (BSD 2-Clause "Simplified" License)

Description

A very fast and expressive template engine.

Resources

Vulnerabilities (7)

See all vulnerabilities
CVE-2024-34064
Affected versions:

<3.1.4

Jinja is an extensible templating engine. The `xmlattr` filter…
CVE-2024-22195
Affected versions:

<3.1.3

Jinja2 before 3.1.3 is affected by a Cross-Site Scripting vuln…
CVE-2016-10745
Affected versions:

<2.8.1

Jinja2 2.8.1 sandboxes format expressions with the same rules …
CVE-2014-1402
Affected versions:

<2.7.2

Jinja2 2.7.2 includes a fix for CVE-2014-1402: The default con…
CVE-2020-28493
Affected versions:

<2.11.3

This affects the package jinja2 from 0.0.0 and before 2.11.3. …
CVE-2014-0012
Affected versions:

>=0,<2.7.3

FileSystemBytecodeCache in Jinja2 2.7.2 does not properly crea…

Versions (50)

See all versions

Has known vulnerabilities

  • 3.1.4
  • 3.1.3
  • 3.1.2
  • 3.1.1
  • 3.1.0
  • 3.0.3
  • 3.0.2
  • 3.0.1
  • 3.0.0
  • 3.0.0rc2
  • 3.0.0rc1
  • 3.0.0a1
  • 2.11.3
  • 2.11.2
  • 2.11.1
  • 2.11.0
  • 2.10.3
  • 2.10.2
  • 2.10.1
  • 2.10