Lucene search

PYSEC-2023-211

🗓️ 22 Oct 2023 19:00:15Reported by GoogleType

osv🔗 osv.dev👁 27 Views

views/switch.py does not prevent protocol-relative URL attack in django-grappell

Reporter	Title	Published	Views	Family All 13
Veracode	Open Redirect	24 Oct 202306:48	–	veracode
OSV	Django Grappelli Open Redirect vulnerability	22 Oct 202321:36	–	osv
OSV	CVE-2021-46898	22 Oct 202319:15	–	osv
Cvelist	CVE-2021-46898	22 Oct 202300:00	–	cvelist
Prion	Xxe	22 Oct 202319:15	–	prion
Tenable Nessus	openSUSE 15 Security Update : python-django-grappelli (openSUSE-SU-2024:0017-1)	12 Jan 202400:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : python-django-grappelli (openSUSE-SU-2023:0384-1)	1 Dec 202300:00	–	nessus
Github Security Blog	Django Grappelli Open Redirect vulnerability	22 Oct 202321:36	–	github
NVD	CVE-2021-46898	22 Oct 202319:15	–	nvd
Vulnrichment	CVE-2021-46898	22 Oct 202300:00	–	vulnrichment

Source	Link
github	www.github.com/sehmaschine/django-grappelli/commit/4ca94bcda0fa2720594506853d85e00c8212968f
github	www.github.com/sehmaschine/django-grappelli/pull/976
github	www.github.com/sehmaschine/django-grappelli/compare/2.15.1...2.15.2
github	www.github.com/sehmaschine/django-grappelli/issues/975

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Oct 2023 19:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS36.1

EPSS0.0009

SSVC