Django security advisory (AV26-666)
Serial number: AV26-666 Date: July 7, 2026 On July 7, 2026, Django published a security advisory to address vulnerabilities in the following products: Django 5.2 – versions prior to 5.2.16 Django 6.0 – versions prior to 6.0.7 The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates. Django Security Advisory
CSIRTS triage
- What
- Django published a security advisory to address vulnerabilities in specific versions.
- Who is affected
- Users and administrators of Django versions prior to 5.2.16 and 6.0.7.
- Urgency
- Remediation is advisable to maintain security, though exploitation status is not specified.
- Action
- Update to Django versions 5.2.16 and 6.0.7 or later.
AI-assisted analysis generated from the source advisory — verify against the original.
Details
Original advisory: https://cyber.gc.ca/en/alerts-advisories/django-security-advisory-av26-666
More from Canadian Centre for Cyber Security
- unknownBitWarden security advisory (AV26-683)2026-07-10
- criticalAL25-007 - Vulnerability impacting Roundcube Webmail – CVE-2025-49113 – Update 12026-07-10
- unknownMicrosoft Edge security advisory (AV26-682)2026-07-10
- criticalBroadcom VMware security advisory (AV26-681)2026-07-10
- unknownDjango security advisory (AV26-084) – Update 12026-07-09