rpm package
opensuse/python-djangorestframework&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/python-djangorestframework&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-21520 | Med | 6.1 | < 3.16.1-2.1 | 3.16.1-2.1 | Jun 26, 2024 | Versions of the package djangorestframework before 3.15.2 are vulnerable to Cross-site Scripting (XSS) via the break_long_headers template filter due to improper input sanitization before splitting and joining with tags. |
- affected < 3.16.1-2.1fixed 3.16.1-2.1
Versions of the package djangorestframework before 3.15.2 are vulnerable to Cross-site Scripting (XSS) via the break_long_headers template filter due to improper input sanitization before splitting and joining with tags.