Lucene search
Ubuntu.comUB:CVE-2015-2241HistoryMar 12, 2015 - 12:00 a.m.
CVE-2015-2241
2015-03-1200:00:00
ubuntu.com
ubuntu.com
8
0.002 Low
EPSS
Percentile
64.7%
Cross-site scripting (XSS) vulnerability in the contents function in
admin/helpers.py in Django before 1.7.6 and 1.8 before 1.8b2 allows remote
attackers to inject arbitrary web script or HTML via a model attribute in
ModelAdmin.readonly_fields, as demonstrated by a @property.
Notes
| Author | Note |
|---|---|
| mdeslaur | only affects 1.7.x |
Related
osv
osv
Django Cross-site Scripting Vulnerability
2022-05-17 03:34:12
PYSEC-2015-8
2015-03-12 14:59:00
archlinux
archlinux
python2-django python-django - cross site scripting
2015-03-11 00:00:00
cvelist
cvelist
CVE-2015-2241
2015-03-12 14:00:00
debiancve
debiancve
CVE-2015-2241
2015-03-12 14:59:00
github
github
Django Cross-site Scripting Vulnerability
2022-05-17 03:34:12
prion
prion
Cross site scripting
2015-03-12 14:59:00
cve
cve
CVE-2015-2241
2015-03-12 14:59:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0127)
2022-01-28 00:00:00
mageia
mageia
Updated python-django packages fix security vulnerabilities
2015-04-03 16:11:23
nessus
nessus
Mandriva Linux Security Advisory : python-django (MDVSA-2015:109)
2015-03-30 00:00:00