Description
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken (aka csrf_token) cookie.
Remediation
References
Related Vulnerabilities
WordPress Plugin Pods-Custom Content Types and Fields SQL Injection (2.5.1.1)
WordPress Plugin NEX-Forms-Ultimate Form builder Multiple SQL Injection Vulnerabilities (4.0)
Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-10172)
WordPress Plugin Contact Form Unspecified Vulnerability (1.1.9)