Description
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken (aka csrf_token) cookie.
Remediation
References
Related Vulnerabilities
Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-41079)
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2017-1000353)
WordPress Plugin Better User Shortcodes Multiple Cross-Site Scripting Vulnerabilities (1.0)
Joomla! Core 3.x.x SQL Injection (3.5.0 - 3.8.5)
WordPress Plugin Data Tables Generator by Supsystic Security Bypass (1.10.25)