Описание
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken (aka csrf_token) cookie.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 1.2.3-1ubuntu0.1 |
| hardy | not-affected | |
| jaunty | not-affected | |
| karmic | not-affected | |
| lucid | not-affected | 1.1.1-2ubuntu1 |
| maverick | released | 1.2.3-1ubuntu0.1 |
| upstream | released | 1.2.3-1 |
Показывать по
10
4.3 Medium
CVSS2
Связанные уязвимости
nvd
около 15 лет назад
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken (aka csrf_token) cookie.
debian
около 15 лет назад
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 ...
4.3 Medium
CVSS2