Description
An issue was discovered in the HTTP FileResponse class in Django 3.2 before 3.2.15 and 4.0 before 4.0.7. An application is vulnerable to a reflected file download (RFD) attack that sets the Content-Disposition header of a FileResponse when the filename is derived from user-supplied input.
Remediation
References
Related Vulnerabilities
Lighttpd Other Vulnerability (CVE-2007-3946)
Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)
WordPress 3.9.x Possible SQL Injection Vulnerability (3.9 - 3.9.20)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2021-3629)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3488)