b1b1da1eac93297503c04b8394fb98e38f552f5f | Vulnerability History Project

The Vulnerability History Project

Fixed #8060 - Added permissions-checking for admin inlines. Thanks p.patruno for report and Stephan Jaensch for work on the patch.

      git-svn-id: http://code.djangoproject.com/svn/django/trunk@16934 bcc190cf-cafb-0310-a4f2-bffc1f526a37

by Lawrence the Dove 2011-10-07 00:41:25 UTC

commit b1b1da1eac93297503c04b8394fb98e38f552f5f

Django VCC Inline Model Access CVE-2019-19118

django/contrib/admin/options.py

+50 -99

django/contrib/contenttypes/generic.py

+1 -2

docs/ref/contrib/admin/index.txt

+1 -7

docs/releases/1.4.txt

-9

tests/regressiontests/admin_inlines/tests.py

+2 -181

tests/regressiontests/admin_ordering/tests.py

+5 -17

tests/regressiontests/generic_inline_admin/tests.py

+8 -14

tests/regressiontests/modeladmin/tests.py

+5 -12

expand_less