CVE-2016-2512
Aliases:GHSA-pw27-w7w4-9qc7PYSEC-2016-15
Advisory lineage Upstream: 0 Downstream: 14
Modified
Published: 08 Apr 2016, 15:00
Last modified:05 Aug 2024, 23:32
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.4 HIGH
v3.0 (nvd)
EPSS Score
1.2% LOW
1% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
08 Apr 2016, 15:00
Published
Vulnerability first disclosed
05 Aug 2024, 23:32
Last Modified
Vulnerability information updated
Description
The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.
CVSS Metrics
- v4.0•MEDIUM•Score: 6.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N
- v3.0•HIGH•Score: 7.4CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
- v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS Trends
Current EPSS score: 1.20%• Percentile: 79%
Techniques & Countermeasures
- CWE-79•Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Affected Systems
- djangoproject•django
1.8.9 | 1.9 | 1.9.1 | 1.9.2
- PyPI•django
< 1.8.10 | ≥ 1.9a1, < 1.9.3 | < c5544d289233f501917e25970c03ed444abbd4f0 | ≥ 1.9, < 1.9.3
References (21)
- http://rhn.redhat.com/errata/RHSA-2016-0506.html
- http://www.securitytracker.com/id/1035152
- http://www.securityfocus.com/bid/83879
- http://rhn.redhat.com/errata/RHSA-2016-0504.html
- http://www.debian.org/security/2016/dsa-3544
- http://rhn.redhat.com/errata/RHSA-2016-0502.html
- http://www.ubuntu.com/usn/USN-2915-3
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.ubuntu.com/usn/USN-2915-2
- http://rhn.redhat.com/errata/RHSA-2016-0505.html
- http://www.ubuntu.com/usn/USN-2915-1
- https://www.djangoproject.com/weblog/2016/mar/01/security-releases/
- https://github.com/django/django/commit/c5544d289233f501917e25970c03ed444abbd4f0
- https://nvd.nist.gov/vuln/detail/CVE-2016-2512
- https://github.com/django/django/commit/382ab137312961ad62feb8109d70a5a581fe8350
- https://github.com/django/django/commit/fc6d147a63f89795dbcdecb0559256470fff4380
- https://github.com/django/django
- https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2016-15.yaml
- https://web.archive.org/web/20210123090815/http://www.securityfocus.com/bid/83879
- https://web.archive.org/web/20210413200202/http://www.securitytracker.com/id/1035152
- https://www.djangoproject.com/weblog/2016/mar/01/security-releases