The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Fixed #7723 - implemented a secure password reset form that uses a token and prompts user for new password.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@8162 bcc190cf-cafb-0310-a4f2-bffc1f526a37
by
Abigail the Gnu 2008-07-31 20:47:53 UTC
commit fcd837cd0f9b2c706bc49af509628778d442bb3f
Django
VCC
CVE-2010-4535
VCC
CVE-2012-4520
django/conf/global_settings.py
-3
django/contrib/admin/templates/registration/password_reset_complete.html
-14
django/contrib/admin/templates/registration/password_reset_confirm.html
-32
django/contrib/admin/templates/registration/password_reset_done.html
+1
-1
django/contrib/admin/templates/registration/password_reset_email.html
+7
-7
django/contrib/admin/templates/registration/password_reset_form.html
+1
-1
django/contrib/auth/forms.py
+26
-36
django/contrib/auth/tests/__init__.py
+1
-4
django/contrib/auth/tests/basic.py
+21
django/contrib/auth/tests/forms.py
+1
-32
django/contrib/auth/tests/tokens.py
-29
django/contrib/auth/tests/views.py
-88
django/contrib/auth/tokens.py
-66
django/contrib/auth/urls.py
+1
-4
django/contrib/auth/views.py
+9
-53
django/utils/http.py
-29
expand_less
The Vulnerability History Project