The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
[1.7.x] Prevented data leakage in contrib.admin via query string manipulation.
This is a security fix. Disclosure following shortly.
by
Hunter the Chinook 2014-08-07 04:18:10 UTC
commit 2b31342cdf14fc20e07c43d258f1e7334ad664a6
Django
Fix
Link from the underworld CVE-2014-0483
django/contrib/admin/exceptions.py
-5
django/contrib/admin/options.py
+2
-24
django/contrib/admin/views/main.py
+2
-7
docs/ref/exceptions.txt
-1
docs/releases/1.4.14.txt
-15
docs/releases/1.5.9.txt
-15
docs/releases/1.6.6.txt
-15
tests/admin_views/tests.py
+3
-33
expand_less
The Vulnerability History Project