MEDIUM PyPI
GHSA-22cc-w7xm-rfhx · CVE-2024-25170 Mezzanine allows attackers to bypass access controls via manipulating the Host header
Modified: 12/6/2024
package
PyPI / mezzanine
pkg:pypi/mezzanine
MEDIUM 6.1 PyPI
GHSA-2544-hpcq-6g27 · CVE-2025-29573, PYSEC-2025-136 Mezzanine CMS Cross-Site Scripting (XSS) vulnerability
Modified: 6/6/2026
MEDIUM 4.8 PyPI
GHSA-269j-37ww-cmh3 · CVE-2025-50481, PYSEC-2025-137 Mezzanine CMS vulnerable to Cross-site Scripting
Modified: 6/6/2026
MEDIUM PyPI
GHSA-7pr5-w74r-jjj7 · CVE-2025-6050 Mezzanine CMS has a Stored Cross-Site Scripting (XSS) vulnerability in the displayable_links_js function
Modified: 7/15/2025
MEDIUM 6.1 PyPI
GHSA-fpv7-hx6r-9vcx · CVE-2020-19002, PYSEC-2021-343 Mezzanine Cross Site Scripting (XSS) vulnerability
Modified: 6/10/2026
MEDIUM PyPI
GHSA-qp56-82vp-xqgv · CVE-2024-25169 Mezzanine allows attackers to bypass access control mechanisms
Modified: 12/6/2024
— PyPI
PYSEC-2021-343 · CVE-2020-19002, GHSA-fpv7-hx6r-9vcx Modified: 6/10/2026
MEDIUM 6.1 PyPI
PYSEC-2025-136 · CVE-2025-29573, GHSA-2544-hpcq-6g27 Modified: 6/10/2026
MEDIUM 4.8 PyPI
PYSEC-2025-137 · CVE-2025-50481, GHSA-269j-37ww-cmh3 Modified: 6/10/2026