Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-2302

Опубликовано: 23 мая 2008
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:django_project:django:0.91:*:*:*:*:*:*:*
cpe:2.3:a:django_project:django:0.95:*:*:*:*:*:*:*
cpe:2.3:a:django_project:django:0.96:*:*:*:*:*:*:*

EPSS

Процентиль: 62%
0.00441
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2008-2302

ubuntu
около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

redhat логотип

CVE-2008-2302

redhat
около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

debian логотип

CVE-2008-2302

debian
около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the admi ...

github логотип

GHSA-54qj-48vx-cr9f

CVSS3: 6.1
github
около 3 лет назад

Django Cross-site scripting (XSS) vulnerability

EPSS

Процентиль: 62%
0.00441
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79