NVD

Id
84778  
Name
CVE-2017-7234  
Description
A maliciously crafted URL to a Django (1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18) site using the ``django.views.static.serve()`` view could redirect to any other domain, aka an open redirect vulnerability.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:N)  
Pub Date
2017-07-18  
Published
2017-04-04  
Modified Date
2017-07-11  
Seq
2017-7234  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
66628 JVNDB-2017-002953 Django におけるオープンリダイレクトの脆弱性 Django には、オープンリダイレクトの脆弱性が存在します。 CVE-2017-7234 0 CVE-2017-7234 84778 5.8 6.1 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002953.html 2017-04-04 2017-05-09 View