The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Fixed CVE-2016-2512 -- Prevented spoofing is_safe_url() with basic auth.
This is a security fix.
by
Clayton the Whippet 2016-02-22 21:47:01 UTC
commit c5544d289233f501917e25970c03ed444abbd4f0
Django
Fix
CVE-2016-2512
VCC
Unsafe-URLS's CVE-2017-7233
django/utils/http.py
+2
-6
docs/releases/1.8.10.txt
-16
docs/releases/1.9.3.txt
-16
tests/utils_tests/test_http.py
-12
expand_less
The Vulnerability History Project