Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Django Improper Input Validation Vulnerability - CVE-2014-3730 - Vulnerability Database
Django

Django Improper Input Validation Vulnerability - CVE-2014-3730

Medium
Reference: CVE-2014-3730
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3730
Title: Django Improper Input Validation Vulnerability
Overview:

The django.util.http.is_safe_url function in Django 1.4 before 1.4.13 1.5 before 1.5.8 1.6 before 1.6.5 and 1.7 before 1.7b4 does not properly validate URLs which allows remote attackers to conduct open redirect attacks via a malformed URL as demonstrated by quothttp:djangoproject.com.quot