Download
| Alert*
|
oval:org.secpod.oval:def:1300219
Updated python-django package fixes security vulnerability: The is_safe_url function has been modified to properly recognize and reject URLs which specify a scheme other than HTTP or HTTPS, to prevent cross-site scripting attacks through redirecting to other schemes, such as javascript. . oval:org.secpod.oval:def:105755 Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY principle. |
