exploitDog

CVE-2008-2302

Опубликовано: 15 мая 2008

Источник: redhat

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2008-2302

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-79

https://bugzilla.redhat.com/show_bug.cgi?id=446402Django: administration application XSS

EPSS

Процентиль: 62%

0.00441

Низкий

Связанные уязвимости

CVE-2008-2302

ubuntu

около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

CVE-2008-2302

nvd

около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.

CVE-2008-2302

debian

около 17 лет назад

Cross-site scripting (XSS) vulnerability in the login form in the admi ...

GHSA-54qj-48vx-cr9f

CVSS3: 6.1

github

около 3 лет назад

Django Cross-site scripting (XSS) vulnerability

EPSS

Процентиль: 62%

0.00441

Низкий