mirror of https://github.com/django/django.git
[2.1.x] Added CVE-2019-12308 to the security release archive.
Backport of 21b1d23912 from master
This commit is contained in:
Nick Pope
Carlton Gibson
parent
8827e09944
commit
d58f8e4235
|
|
@ -948,3 +948,16 @@ Versions affected
|
|||
|
||||
* Django 2.2 :commit:`(patch) <baaf187a4e354bf3976c51e2c83a0d2f8ee6e6ad>`
|
||||
* Django 2.1 :commit:`(patch) <95649bc08547a878cebfa1d019edec8cb1b80829>`
|
||||
|
||||
June 3, 2019 - :cve:`2019-12308`
|
||||
--------------------------------
|
||||
|
||||
XSS via "Current URL" link generated by ``AdminURLFieldWidget``. `Full
|
||||
description <https://www.djangoproject.com/weblog/2019/jun/03/security-releases/>`__
|
||||
|
||||
Versions affected
|
||||
~~~~~~~~~~~~~~~~~
|
||||
|
||||
* Django 2.2 :commit:`(patch) <afddabf8428ddc89a332f7a78d0d21eaf2b5a673>`
|
||||
* Django 2.1 :commit:`(patch) <09186a13d975de6d049f8b3e05484f66b01ece62>`
|
||||
* Django 1.11 :commit:`(patch) <c238701859a52d584f349cce15d56c8e8137c52b>`
|
||||
|
|
|
|||
Loading…
Reference in New Issue