Lucene search
MitreCVELIST:CVE-2021-32052HistoryMay 06, 2021 - 3:49 p.m.
CVE-2021-32052
2021-05-0615:49:20
mitre
raw.githubusercontent.com
3
In Django 2.2 before 2.2.22, 3.1 before 3.1.10, and 3.2 before 3.2.2 (with Python 3.9.5+), URLValidator does not prohibit newlines and tabs (unless the URLField form field is used). If an application uses values with newlines in an HTTP response, header injection can occur. Django itself is unaffected because HttpResponse prohibits newlines in HTTP headers.
Related
cve
cve
CVE-2021-32052
2021-05-06 16:15:00
osv
osv
Header injection possible in Django
2021-06-09 17:14:51
BIT-django-2021-32052
2024-03-06 10:55:03
CVE-2021-32052
2021-05-06 16:15:07
veracode
veracode
HTTP Response Header Injection
2021-05-07 09:46:17
debiancve
debiancve
CVE-2021-32052
2021-05-06 16:15:00
redhatcve
redhatcve
CVE-2021-32052
2021-05-06 18:36:40
github
github
Header injection possible in Django
2021-06-09 17:14:51
prion
prion
Design/Logic Flaw
2021-05-06 16:15:00
openvas
openvas
Django 2.2 < 2.2.22, 3.1 < 3.1.10, 3.2 < 3.2.2 Header Injection Vulnerability - Linux
2021-05-07 00:00:00
Django 2.2 < 2.2.22, 3.1 < 3.1.10, 3.2 < 3.2.2 Header Injection Vulnerability - Windows
2021-05-07 00:00:00
Ubuntu: Security Advisory (USN-5373-2)
2022-08-26 00:00:00
ubuntucve
ubuntucve
CVE-2021-32052
2021-05-06 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2022-04-11 00:00:00
Django vulnerabilities
2021-06-02 00:00:00
Django vulnerabilities
2022-04-11 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : Django vulnerabilities (USN-5373-2)
2022-04-11 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Django vulnerabilities (USN-4975-1)
2021-06-02 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Django vulnerabilities (USN-5373-1)
2022-04-11 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: python-django-3.1.9-1.fc34
2021-05-12 05:45:05
altlinux
altlinux
mageia
mageia
Updated python-django package fixes security vulnerabilities
2021-07-16 11:25:31
