Dear Django Group Members,
I hope I'm not breaking any rules, because I'd like to share with you a brief article I wrote on the security of applications, including those written in Django.
Django does a great job in protecting developers and the users of your applications from many security vulnerabilities such as XSS, SQL Injection, CSRF, and many others.
However, there is at least one area that you need to address carefully. This relates to the vulnerability known as Broken Access Control.
Cheers,
The ReynardSec Team