๐Ÿ” CVE Alert

CVE-2026-16216

MEDIUM 4.3

geex-arts django-jet OAuth cross-site request forgery

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

A weakness has been identified in geex-arts django-jet up to 1.0.8. Affected is an unknown function of the component OAuth Handler. Executing a manipulation can lead to cross-site request forgery. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

CWE CWE-352 CWE-862
Vendor geex-arts
Product django-jet
Published Jul 19, 2026
Stay Ahead of the Next One

Get instant alerts for geex-arts django-jet

Be the first to know when new medium vulnerabilities affecting geex-arts django-jet are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

geex-arts / django-jet
1.0.0 1.0.1 1.0.2 1.0.3 1.0.4 1.0.5 1.0.6 1.0.7 1.0.8

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
vuldb.com: https://vuldb.com/vuln/380039 vuldb.com: https://vuldb.com/vuln/380039/cti vuldb.com: https://vuldb.com/cve/CVE-2026-16216 vuldb.com: https://vuldb.com/submit/857947 github.com: https://github.com/geex-arts/django-jet/issues/528 github.com: https://github.com/geex-arts/django-jet/

Credits

๐Ÿ” GalaxynX (VulDB User) VulDB CNA Team