Cross-site scripting (XSS) vulnerability in Django 1.1.x prior to 1.1.4 and 1.2.x prior to 1.2.5 might allow remote malicious users to inject arbitrary web script or HTML via a filename associated with a file upload.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
djangoproject django 1.1 |
||
djangoproject django 1.1.3 |
||
djangoproject django 1.1.0 |
||
djangoproject django 1.1.2 |
||
djangoproject django 1.2.1 |
||
djangoproject django 1.2.2 |
||
djangoproject django 1.2.3 |
||
djangoproject django 1.2.4 |
||
djangoproject django 1.2 |