CVE-2017-7233 – django

Package

Manager: pip
Name: django
Vulnerable Version: >=1.10a1 <1.10.7 || >=1.9a1 <1.9.13 || >=1.8a1 <1.8.18

Severity

Level: Medium

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

EPSS: 0.00747 pctl0.72181

Details

Django open redirect and possible XSS attack via user-supplied numeric redirect URLs Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on user input in some cases to redirect the user to an "on success" URL. The security check for these redirects (namely ``django.utils.http.is_safe_url()``) considered some numeric URLs "safe" when they shouldn't be, aka an open redirect vulnerability. Also, if a developer relies on ``is_safe_url()`` to provide safe redirect targets and puts such a URL into a link, they could suffer from an XSS attack.

Metadata

Created: 2019-01-04T17:50:26Z
Modified: 2024-09-18T16:08:51Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/01/GHSA-37hp-765x-j95x/GHSA-37hp-765x-j95x.json
CWE IDs: ["CWE-601"]
Alternative ID: GHSA-37hp-765x-j95x
Finding: F156
Auto approve: 1