The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Fixed #15667 -- Added template-based widget rendering.
Thanks Carl Meyer and Tim Graham for contributing to the patch.
by
Marjorie the Chinchilla 2016-12-27 22:00:56 UTC
commit b52c73008a9d67e9ddbb841872dc15cdd3d6ee01
Django
VCC
CVE-2018-16984
VCC
Unsanitized Clickable Links CVE-2019-12308
django/conf/global_settings.py
-3
django/contrib/admin/templates/admin/widgets/clearable_file_input.html
-6
django/contrib/admin/templates/admin/widgets/foreign_key_raw_id.html
-1
django/contrib/admin/templates/admin/widgets/many_to_many_raw_id.html
-1
django/contrib/admin/templates/admin/widgets/radio.html
-1
django/contrib/admin/templates/admin/widgets/related_widget_wrapper.html
-27
django/contrib/admin/templates/admin/widgets/split_datetime.html
-4
django/contrib/admin/templates/admin/widgets/url.html
-1
django/contrib/admin/widgets.py
+99
-67
django/contrib/auth/forms.py
+18
-12
django/contrib/auth/templates/auth/widgets/read_only_password_hash.html
-3
django/contrib/gis/admin/options.py
+1
-1
django/contrib/gis/admin/widgets.py
+3
-2
django/contrib/gis/forms/widgets.py
+6
-8
django/contrib/postgres/forms/array.py
+2
-2
django/forms/boundfield.py
+2
-66
django/forms/forms.py
+1
-15
django/forms/jinja2/django/forms/widgets/attrs.html
-1
django/forms/jinja2/django/forms/widgets/checkbox.html
-1
django/forms/jinja2/django/forms/widgets/checkbox_option.html
-1
django/forms/jinja2/django/forms/widgets/checkbox_select.html
-1
django/forms/jinja2/django/forms/widgets/clearable_file_input.html
-5
django/forms/jinja2/django/forms/widgets/date.html
-1
django/forms/jinja2/django/forms/widgets/datetime.html
-1
django/forms/jinja2/django/forms/widgets/email.html
-1
django/forms/jinja2/django/forms/widgets/file.html
-1
django/forms/jinja2/django/forms/widgets/hidden.html
-1
django/forms/jinja2/django/forms/widgets/input.html
-1
django/forms/jinja2/django/forms/widgets/input_option.html
-1
django/forms/jinja2/django/forms/widgets/multiple_hidden.html
-1
django/forms/jinja2/django/forms/widgets/multiple_input.html
-5
django/forms/jinja2/django/forms/widgets/multiwidget.html
-1
django/forms/jinja2/django/forms/widgets/number.html
-1
django/forms/jinja2/django/forms/widgets/password.html
-1
django/forms/jinja2/django/forms/widgets/radio.html
-1
django/forms/jinja2/django/forms/widgets/radio_option.html
-1
django/forms/jinja2/django/forms/widgets/select.html
-5
django/forms/jinja2/django/forms/widgets/select_date.html
-1
django/forms/jinja2/django/forms/widgets/select_option.html
-1
django/forms/jinja2/django/forms/widgets/splitdatetime.html
-1
django/forms/jinja2/django/forms/widgets/splithiddendatetime.html
-1
django/forms/jinja2/django/forms/widgets/text.html
-1
django/forms/jinja2/django/forms/widgets/textarea.html
-2
django/forms/jinja2/django/forms/widgets/time.html
-1
django/forms/jinja2/django/forms/widgets/url.html
-1
django/forms/renderers.py
-71
django/forms/templates/django/forms/widgets/attrs.html
-1
django/forms/templates/django/forms/widgets/checkbox.html
-1
django/forms/templates/django/forms/widgets/checkbox_option.html
-1
django/forms/templates/django/forms/widgets/checkbox_select.html
-1
django/forms/templates/django/forms/widgets/clearable_file_input.html
-5
django/forms/templates/django/forms/widgets/date.html
-1
django/forms/templates/django/forms/widgets/datetime.html
-1
django/forms/templates/django/forms/widgets/email.html
-1
django/forms/templates/django/forms/widgets/file.html
-1
django/forms/templates/django/forms/widgets/hidden.html
-1
django/forms/templates/django/forms/widgets/input.html
-1
django/forms/templates/django/forms/widgets/input_option.html
-1
django/forms/templates/django/forms/widgets/multiple_hidden.html
-1
django/forms/templates/django/forms/widgets/multiple_input.html
-5
django/forms/templates/django/forms/widgets/multiwidget.html
-1
django/forms/templates/django/forms/widgets/number.html
-1
django/forms/templates/django/forms/widgets/password.html
-1
django/forms/templates/django/forms/widgets/radio.html
-1
django/forms/templates/django/forms/widgets/radio_option.html
-1
django/forms/templates/django/forms/widgets/select.html
-5
django/forms/templates/django/forms/widgets/select_date.html
-1
django/forms/templates/django/forms/widgets/select_option.html
-1
django/forms/templates/django/forms/widgets/splitdatetime.html
-1
django/forms/templates/django/forms/widgets/splithiddendatetime.html
-1
django/forms/templates/django/forms/widgets/text.html
-1
django/forms/templates/django/forms/widgets/textarea.html
-2
django/forms/templates/django/forms/widgets/time.html
-1
django/forms/templates/django/forms/widgets/url.html
-1
django/forms/widgets.py
+435
-366
django/template/backends/jinja2.py
+1
-1
django/test/signals.py
-2
docs/internals/deprecation.txt
-3
docs/ref/forms/api.txt
-23
docs/ref/forms/index.txt
-1
docs/ref/forms/renderers.txt
-131
docs/ref/forms/widgets.txt
+60
-96
docs/ref/settings.txt
-16
docs/releases/1.11.txt
-28
docs/spelling_wordlist
-1
tests/admin_inlines/tests.py
+12
-14
tests/admin_views/tests.py
+1
-1
tests/admin_widgets/tests.py
+21
-41
tests/forms_tests/field_tests/test_filepathfield.py
-3
tests/forms_tests/jinja2/forms_tests/custom_widget.html
-1
tests/forms_tests/templates/forms_tests/custom_widget.html
-1
tests/forms_tests/tests/test_forms.py
+2
-91
tests/forms_tests/tests/test_renderers.py
-52
tests/forms_tests/tests/test_widgets.py
+200
-1
tests/forms_tests/widget_tests/base.py
+1
-19
tests/forms_tests/widget_tests/test_select.py
-62
tests/model_forms/tests.py
+8
-1
tests/runtests.py
-5
expand_less
The Vulnerability History Project