1
0
mirror of https://github.com/django/django.git synced 2024-12-22 17:16:24 +00:00

Added CVE-2019-12308 to the security release archive.

This commit is contained in:
Nick Pope 2019-06-03 20:17:39 +01:00 committed by Carlton Gibson
parent 8fb0ea5583
commit 21b1d23912

View File

@ -948,3 +948,16 @@ Versions affected
* Django 2.2 :commit:`(patch) <baaf187a4e354bf3976c51e2c83a0d2f8ee6e6ad>`
* Django 2.1 :commit:`(patch) <95649bc08547a878cebfa1d019edec8cb1b80829>`
June 3, 2019 - :cve:`2019-12308`
--------------------------------
XSS via "Current URL" link generated by ``AdminURLFieldWidget``. `Full
description <https://www.djangoproject.com/weblog/2019/jun/03/security-releases/>`__
Versions affected
~~~~~~~~~~~~~~~~~
* Django 2.2 :commit:`(patch) <afddabf8428ddc89a332f7a78d0d21eaf2b5a673>`
* Django 2.1 :commit:`(patch) <09186a13d975de6d049f8b3e05484f66b01ece62>`
* Django 1.11 :commit:`(patch) <c238701859a52d584f349cce15d56c8e8137c52b>`