H3-2022-0042
Django Debug Mode Enabled
Category | SECURITY_MISCONFIGURATION |
Base Score | 4.5 |
Description
Django running with debug mode enabled will display detailed error pages. If your app raises an exception when DEBUG is enabled, Django will display a detailed traceback, including metadata about your environment, such as all the currently defined Django settings from settings.py.
Impact
Sensitive environment information may be leaked to attackers allowing for further exploitation.