H3-2022-0042¶

Django Debug Mode Enabled

Description¶

Django running with debug mode enabled will display detailed error pages. If your app raises an exception when DEBUG is enabled, Django will display a detailed traceback, including metadata about your environment, such as all the currently defined Django settings from settings.py.

Impact¶

Sensitive environment information may be leaked to attackers allowing for further exploitation.

References¶

• Django Debug Mode
• CWE-215: Insertion of Sensitive Information Into Debugging Code