VulnerableCode Vulnerability Details - VCID-72hy-zdur-aaaj

Search for vulnerabilities

Vulnerability details: VCID-72hy-zdur-aaaj

Essentials
Severities (0)
References (1)
Severity details (0)
Exploits (0)
EPSS
History (0)

Vulnerability ID	VCID-72hy-zdur-aaaj
Aliases	GMS-2013-18
Summary	Possible XSS via is_safe_url The is_safe_url() function, due to the manner in which it parses the URL, will permit redirects to schemes other than HTTP and HTTPS such as javascript:.
Status	Published
Exploitability	0.5
Weighted Severity	0.0
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (2)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
There are no known severity scores.

Reference id	Reference type	URL
		https://www.djangoproject.com/weblog/2013/aug/13/security-releases-issued/

No exploits are available.

There are no known vectors.

No EPSS data available for this vulnerability.

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.