fkie_cve-2017-12794
Vulnerability from fkie_nvd
Published
2017-09-07 13:29
Modified
2025-04-20 01:37
Severity ?
6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
In Django 1.10.x before 1.10.8 and 1.11.x before 1.11.5, HTML autoescaping was disabled in a portion of the template for the technical 500 debug page. Given the right circumstances, this allowed a cross-site scripting attack. This vulnerability shouldn't affect most production sites since you shouldn't run with "DEBUG = True" (which makes this page accessible) in your production settings.
References
cve@mitre.orghttp://www.securityfocus.com/bid/100643Third Party Advisory, VDB Entry
cve@mitre.orghttp://www.securitytracker.com/id/1039264Third Party Advisory, VDB Entry
cve@mitre.orghttps://usn.ubuntu.com/3559-1/
cve@mitre.orghttps://www.djangoproject.com/weblog/2017/sep/05/security-releases/Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/100643Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1039264Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108https://usn.ubuntu.com/3559-1/
af854a3a-2127-422b-91ae-364da2661108https://www.djangoproject.com/weblog/2017/sep/05/security-releases/Patch, Vendor Advisory
Impacted products
Vendor Product Version
djangoproject django 1.10.0
djangoproject django 1.10.1
djangoproject django 1.10.2
djangoproject django 1.10.3
djangoproject django 1.10.4
djangoproject django 1.10.5
djangoproject django 1.10.6
djangoproject django 1.10.7
djangoproject django 1.11.0
djangoproject django 1.11.1
djangoproject django 1.11.2
djangoproject django 1.11.3
djangoproject django 1.11.4


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D2541CE-0462-46DF-BDD8-C19D6E45140B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CE31960-7C68-42F3-B215-B30A87DB67CC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3838B8E-8F0E-4F7A-88E6-FFF2590E5302",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D6C6214-7946-4025-84E6-59448CFE75B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "58182835-CB1F-4490-AE65-90601DBFD0D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "04AE04CD-E923-4630-9BAA-5A4D5A5D0055",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "2517FB1C-B732-432B-9F27-EE60F6556433",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.10.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "28F4BB27-B6AF-47AD-9301-DDFF4198B9F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.11.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC58EB0F-6DE0-450B-A963-2CA4084BDE71",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.11.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "437E4D87-F5C9-4954-9882-396C0ADF649E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.11.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D64C7397-B2A8-4C93-AC09-337E243A7483",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.11.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F3CDEA7-EFB7-4F4B-872B-1D18CDE340CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:djangoproject:django:1.11.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "08EFE4B2-E975-4842-BCAB-528D03F4AB73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In Django 1.10.x before 1.10.8 and 1.11.x before 1.11.5, HTML autoescaping was disabled in a portion of the template for the technical 500 debug page. Given the right circumstances, this allowed a cross-site scripting attack. This vulnerability shouldn\u0027t affect most production sites since you shouldn\u0027t run with \"DEBUG = True\" (which makes this page accessible) in your production settings."
    },
    {
      "lang": "es",
      "value": "En Django versiones 1.10.x anteriores a la 1.10.8 y versiones 1.11.x anteriores a la 1.11.5, se deshabilit\u00f3 la funci\u00f3n de autoescapado HTML en una parte de la plantilla para la p\u00e1gina de depuraci\u00f3n technical 500. En las condiciones adecuadas, esto permitir\u00eda un ataque de Cross-Site Scripting (XSS). Esta vulnerabilidad no deber\u00eda afectar a la mayor\u00eda de sitios de producci\u00f3n, ya que no se deber\u00eda ejecutar el programa con \"DEBUG = True\" (lo que hace que esta p\u00e1gina sea accesible) en la configuraci\u00f3n de producci\u00f3n."
    }
  ],
  "id": "CVE-2017-12794",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-09-07T13:29:00.467",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/100643"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1039264"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://usn.ubuntu.com/3559-1/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://www.djangoproject.com/weblog/2017/sep/05/security-releases/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/100643"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1039264"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://usn.ubuntu.com/3559-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://www.djangoproject.com/weblog/2017/sep/05/security-releases/"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.