CVE-2012-3442
published 2012-07-31CVE-2012-3442: The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.07%
79.1th percentile
The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a data: URL.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | python-django | < python-django 1.4.1-1 (bookworm) | python-django 1.4.1-1 (bookworm) |
| djangoproject | django | < 1.3.2 | 1.3.2 |
| djangoproject | django | — | — |
| djangoproject | django | >= 0 < 1.3.2 | 1.3.2 |
| djangoproject | django | >= 1.4 < 1.4.1 | 1.4.1 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_ubuntu4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Django Allows Redirect via Data URL
osv·2022-05-17
CVE-2012-3442 [CRITICAL] Django Allows Redirect via Data URL
Django Allows Redirect via Data URL
The (1) `django.http.HttpResponseRedirect` and (2) `django.http.HttpResponsePermanentRedirect` classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a `data:` URL.
GHSA
Django Allows Redirect via Data URL
ghsa·2022-05-17
CVE-2012-3442 [CRITICAL] CWE-79 Django Allows Redirect via Data URL
Django Allows Redirect via Data URL
The (1) `django.http.HttpResponseRedirect` and (2) `django.http.HttpResponsePermanentRedirect` classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a `data:` URL.
OSV
CVE-2012-3442: The (1) django
osv·2012-07-31·CVSS 4.3
CVE-2012-3442 [MEDIUM] CVE-2012-3442: The (1) django
The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a data: URL.
Ubuntu
Django vulnerabilities
vendor_ubuntu·2012-09-10·CVSS 4.3
CVE-2012-3442 [MEDIUM] Django vulnerabilities
Title: Django vulnerabilities
Summary: Applications using Django could be made to crash or expose sensitive
information.
It was discovered that Django incorrectly validated the scheme of a
redirect target. If a user were tricked into opening a specially crafted
URL, an attacker could possibly exploit this to conduct cross-site
scripting (XSS) attacks. (CVE-2012-3442)
It was discovered that Django incorrectly handled validating certain
images. A remote attacker could use this flaw to cause the server to
consume memory, leading to a denial of service. (CVE-2012-3443)
Jeroen Dekkers discovered that Django incorrectly handled certain image
dimensions. A remote attacker could use this flaw to cause the server to
consume resources, leading to a denial of service. (CVE-2012-3444)
Instruction
Debian
CVE-2012-3442: python-django - The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermane...
vendor_debian·2012·CVSS 4.3
CVE-2012-3442 [MEDIUM] CVE-2012-3442: python-django - The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermane...
The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via a data: URL.
Scope: local
bookworm: resolved (fixed in 1.4.1-1)
bullseye: resolved (fixed in 1.4.1-1)
forky: resolved (fixed in 1.4.1-1)
sid: resolved (fixed in 1.4.1-1)
trixie: resolved (fixed in 1.4.1-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [fedora-all]
bugzilla·2012-07-31·CVSS 4.3
CVE-2012-3442 [MEDIUM] CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [fedora-all]
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates
Bugzilla
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views
bugzilla·2012-07-31·CVSS 4.3
CVE-2012-3442 [MEDIUM] CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views
James Bennett of the Django Project reports:
Security releases issued
Today the Django team is issuing multiple releases -- Django 1.3.2 and
Django 1.4.1 -- to remedy security issues reported to us.
All users are encouraged to upgrade Django immediately.
Cross-site scripting in authentication views
The login() and logout() views provided in Django's authentication
framework make use of the common "POST-redirect-GET" pattern; a
configurable querystring parameter can be used to specify the location
to redirect to on successful submission. Currently, those views
perform basic validation to ensure that the redirect location does not
specify a different domain.
However, this validation does not check the s
Bugzilla
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [epel-all]
bugzilla·2012-07-31·CVSS 4.3
CVE-2012-3442 [MEDIUM] CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [epel-all]
CVE-2012-3442 Django: 1.3.1 and 1.4.0 Cross-site scripting in authentication views [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/n
http://www.debian.org/security/2012/dsa-2529http://www.mandriva.com/security/advisories?name=MDVSA-2012:143http://www.openwall.com/lists/oss-security/2012/07/31/1http://www.openwall.com/lists/oss-security/2012/07/31/2http://www.ubuntu.com/usn/USN-1560-1https://www.djangoproject.com/weblog/2012/jul/30/security-releases-issued/http://www.debian.org/security/2012/dsa-2529http://www.mandriva.com/security/advisories?name=MDVSA-2012:143http://www.openwall.com/lists/oss-security/2012/07/31/1http://www.openwall.com/lists/oss-security/2012/07/31/2http://www.ubuntu.com/usn/USN-1560-1https://www.djangoproject.com/weblog/2012/jul/30/security-releases-issued/
2012-07-31
Published