Django Allows Arbitrary URL Generation

GHSA-2655-q453-22f9 · CVE-2012-4520 · PYSEC-2012-7

Published May 17, 2022 · Modified Sep 18, 2024

Description

The django.http.HttpRequest.get_host function in Django 1.3.x before 1.3.4 and 1.4.x before 1.4.2 allows remote attackers to generate and display arbitrary URLs via crafted username and password Host header values.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2012-4520
WEB https://github.com/django/django/commit/92d3430f12171f16f566c9050c40feefb830a4a3
WEB https://github.com/django/django/commit/9305c0e12d43c4df999c3301a1f0c742264a657e
WEB https://github.com/django/django/commit/b45c377f8f488955e0c7069cad3f3dd21910b071
WEB https://www.openwall.com/lists/oss-security/2012/10/30/4
WEB https://www.djangoproject.com/weblog/2012/oct/17/security
WEB https://www.debian.org/security/2013/dsa-2634
WEB https://web.archive.org/web/20140417023920/http://securitytracker.com/id?1027708
WEB https://ubuntu.com/usn/usn-1757-1
WEB https://ubuntu.com/usn/usn-1632-1
WEB https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090970.html
WEB https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090904.html
WEB https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090666.html
WEB https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2012-7.yaml
PACKAGE https://github.com/django/django
WEB https://bugzilla.redhat.com/show_bug.cgi?id=865164
WEB https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691145
WEB http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691145
WEB http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090666.html
WEB http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090904.html
WEB http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090970.html
WEB http://ubuntu.com/usn/usn-1632-1
WEB http://ubuntu.com/usn/usn-1757-1
WEB http://www.debian.org/security/2013/dsa-2634
WEB http://www.openwall.com/lists/oss-security/2012/10/30/4

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes