Wednesday, August 14, 2013

New Django v1.4.6 and v1.5.2 released

Yesterday the Django project released new versions of Django 1.4 and 1.5 that fix two cross-site scripting (XSS) vulnerabilities. We just updated both Django versions 1.4.6 and 1.5.2 with a fix for this issue and we continue working on updating all BitNami Django-based applications.

You can download free native installers for both versions of Django, virtual machines and Azure and Amazon EC2 cloud images.

You can find more information about the security issue at the official Django blog. If you already have installed a version of these applications please make sure that you update your environment or apply the appropriate patches that you can find in the above blog post.