The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
[1.11.x] Fixed CVE-2017-12794 -- Fixed XSS possibility in traceback section of technical 500 debug page.
This is a security fix.
by
Lindsey the Elephant Seal 2017-08-02 20:22:35 UTC
commit e35a0c56086924f331e9422daa266e907a4784cc
Django
Fix
CVE-2017-12794
django/views/debug.py
+11
-9
docs/releases/1.10.8.txt
-9
docs/releases/1.11.5.txt
-9
tests/view_tests/tests/py3_test_debug.py
+6
-7
expand_less
The Vulnerability History Project