Description

Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken (aka csrf_token) cookie.

Remediation

References

CVE-2010-3082

Related Vulnerabilities

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.7)

WordPress Plugin ShopLentor-WooCommerce Builder for Elementor & Gutenberg +10 Modules-All in One Solution (formerly WooLentor) Multiple Cross-Site Scripting Vulnerabilities (1.8.5)

Joomla Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358)

WordPress Plugin Quick Chat Cross-Site Scripting (4.14)

PostgreSQL CVE-2023-5870 Vulnerability (CVE-2023-5870)

Severity

Medium

Classification

CVE-2010-3082 CWE-707

Tags

Missing Update Known Vulnerabilities