CVE-2016-7401: CSRF protection bypass on a site with Google Analytics An interaction between Google Analytics and Django’s cookie parsing could allow an attacker to set arbitrary cookies leading to a bypass of CSRF protection.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 5 | noarch | python-django | <Â 1.8.15-1 | python-django-1.8.15-1.mga5 |