CVE-2007-0405

Name of the Vulnerable Software and Affected Versions Django version 0.95

Description The issue is related to the LazyUser class in the AuthenticationMiddleware, which does not properly cache the user name across requests. This allows remote authenticated users to gain the privileges of a different user.

Recommendations For Django version 0.95, consider updating to a newer version that addresses this issue, as the current version does not properly handle user authentication across requests. At the moment, there is no information about a newer version that contains a fix for this vulnerability.