Safety vulnerability ID: 61152
The information on this page was manually curated by our Cybersecurity Intelligence Team.
The LazyUser class in the AuthenticationMiddleware for Django 0.95 does not properly cache the user name across requests, which allows remote authenticated users to gain the privileges of a different user.
Latest version: 5.1.4
A high-level Python web framework that encourages rapid development and clean, pragmatic design.
This vulnerability has no description
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application