django CMS security updates
Security releases for django CMS versions 3.7.x, 3.6.x, 3.5.x and 3.4.x address medium-level vulnerabilities. We recommend updating to version 3.7.4, 3.6.1, 3.5.4 or 3.4.7.
Please see the relevant commits on GitHub for more information about the vulnerability and mitigation.
Thanks to Sahil Dhar for the detailed report through our security email.
As ever, we remind our users and contributors that all security reports, patches and concerns be addressed only to our security team by email, at [email protected].
Please do not use GitHub, our email lists or IRC to report, address or otherwise discuss matters relating to security.