Have you ever seen the backend of the cms? I think that when you find a system you dont know mutch about, it is allwayes a good start to try and configure it your selfe.
Saying that its secured by people wiser than you, is not a good start. Remember that they have to think about every security flaw and you just have to find the one they missed.
I can see that the latest version is 1.4.2 so mayby you should read the bug fixes for that version.
A quick look around the site gave me an interesting header, mayby you can use it and follow up on it. https://www.djangoproject.com/weblog/2012/oct/17/security/
As people normaly say on this forum, post a link to the site and a message in the source or something. Then we can try it out, and help you with a more specific solution. Maybe.