Django 'is_safe_url()' Function URI Redirection Vulnerability

Bugtraq ID: 67410
Class: Input Validation Error
CVE: CVE-2014-3730
Remote: Yes
Local: No
Published: May 15 2014 12:00AM
Updated: Sep 15 2014 01:15AM
Credit: Peter Kuma and Gavin Wahl
Vulnerable: MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus