{"id":"ECHO-37cc-2ae7-e3c8","upstream":["CVE-2026-1207","GHSA-mwm9-4648-f68q"],"severity":[],"modified":"2026-04-20T12:40:43.814Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"django","purl":"pkg:pypi/django"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.2.1+echo.1"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-1207"},{"type":"WEB","url":"https://github.com/advisories/GHSA-mwm9-4648-f68q"}]}