The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
[1.5.X] Fixed #18856 -- Ensured that redirects can't be poisoned by malicious users.
by
Leland the Mouse 2012-11-17 21:00:53 UTC
commit fce1fa0f7fb984d4e76eb81ffc3cb9826046c3b5
Django
VCC
URL Is Not Safe CVE-2014-3730
django/contrib/auth/views.py
+29
-23
django/contrib/comments/views/comments.py
+5
-3
django/contrib/comments/views/moderation.py
+4
-6
django/contrib/comments/views/utils.py
+8
-9
django/utils/http.py
-12
django/views/i18n.py
+5
-6
tests/regressiontests/comment_tests/tests/comment_view_tests.py
-7
tests/regressiontests/comment_tests/tests/moderation_view_tests.py
+5
-85
tests/regressiontests/views/tests/i18n.py
+1
-16
expand_less
The Vulnerability History Project