Kwetsbaarheid CVE-2019-3498

In Django 1.11.x Before 1.11.18, 2.0.x Before 2.0.10, And 2.1.x Before 2.1.5, An Improper Neutralization Of Special Elements In Output Used By A Downstream Component Issue Exists In Django.views.defaults.page_not_found(), Leading To Content Spoofing (in A 404 Error Page) If A User Fails To Recognize That A Crafted URL Has Malicious Content.

Algemeen

CVE
CVE-2019-3498
Leverancier(s) betrokken
Omschrijving
In Django 1.11.x Before 1.11.18, 2.0.x Before 2.0.10, And 2.1.x Before 2.1.5, An Improper Neutralization Of Special Elements In Output Used By A Downstream Component Issue Exists In Django.views.defaults.page_not_found(), Leading To Content Spoofing (in A 404 Error Page) If A User Fails To Recognize That A Crafted URL Has Malicious Content.
Publicatie
Woensdag, 9 Januari 2019
Gewijzigd
Donderdag, 10 Januari 2019 18:00
Ernst

Referenties

Modificatie geschiedenis

Geef hieronder je email adres op en word op de hoogte gehouden van aanpassingen aan deze CVE