Description
Cross-site scripting (XSS) vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 might allow remote attackers to inject arbitrary web script or HTML via a filename associated with a file upload.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2006-5335 Vulnerability (CVE-2006-5335)
Oracle Application Server CVE-2008-0347 Vulnerability (CVE-2008-0347)
Apache HTTP Server Other Vulnerability (CVE-2021-30641)
WordPress Plugin Gravity Forms Unspecified Vulnerability (2.4.17)
WordPress Plugin Automatic 'q' Parameter SQL Injection (2.0.3)