Lucene search
RedhatCVELIST:CVE-2012-3442HistoryJul 31, 2012 - 5:00 p.m.
CVE-2012-3442
2012-07-3117:00:00
redhat
www.cve.org
1
The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a data: URL.
Related
cve
cve
CVE-2012-3442
2012-07-31 17:55:01
debiancve
debiancve
CVE-2012-3442
2012-07-31 17:55:01
osv
osv
Django Allows Redirect via Data URL
2022-05-17 05:12:01
PYSEC-2012-2
2012-07-31 17:55:00
python-django - several
2012-08-14 00:00:00
github
github
Django Allows Redirect via Data URL
2022-05-17 05:12:01
prion
prion
Cross site scripting
2012-07-31 17:55:00
gitlab
gitlab
nvd
nvd
CVE-2012-3442
2012-07-31 17:55:01
ubuntucve
ubuntucve
CVE-2012-3442
2012-07-31 00:00:00
nessus
nessus
Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : python-django vulnerabilities (USN-1560-1)
2012-09-11 00:00:00
Fedora 17 : Django-1.4.1-1.fc17 (2012-11415)
2012-08-13 00:00:00
Mandriva Linux Security Advisory : python-django (MDVSA-2012:143)
2012-09-06 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: Django-1.4.1-1.fc17
2012-08-10 22:27:19
[SECURITY] Fedora 16 Update: Django-1.3.2-1.fc16
2012-08-10 22:34:03
[SECURITY] Fedora 17 Update: Django-1.4.3-1.fc17
2012-12-20 03:20:48
openvas
openvas
Fedora Update for Django FEDORA-2012-11416
2012-08-14 00:00:00
Ubuntu: Security Advisory (USN-1560-1)
2012-09-11 00:00:00
Debian: Security Advisory (DSA-2529-1)
2013-09-18 00:00:00
freebsd
freebsd
django -- multiple vulnerabilities
2012-07-30 00:00:00
seebug
seebug
Djangoθ·¨η«θζ¬ζ§θ‘εδΈ€δΈͺζη»ζε‘ζΌζ΄
2012-08-03 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2012-09-10 00:00:00
debian
debian
[SECURITY] [DSA 2529-1] python-django security update
2012-08-14 20:05:21
securityvulns
securityvulns
[ MDVSA-2012:143 ] python-django
2012-09-03 00:00:00