1
0
mirror of https://github.com/django/django.git synced 2024-12-22 17:16:24 +00:00
django/docs/topics
Natalia 8c35a0a903 Fixed CVE-2024-45231 -- Avoided server error on password reset when email sending fails.
On successful submission of a password reset request, an email is sent
to the accounts known to the system. If sending this email fails (due to
email backend misconfiguration, service provider outage, network issues,
etc.), an attacker might exploit this by detecting which password reset
requests succeed and which ones generate a 500 error response.

Thanks to Thibaut Spriet for the report, and to Mariusz Felisiak, Adam
Johnson, and Sarah Boyce for the reviews.
2024-09-03 09:22:32 -03:00
..
auth Fixed CVE-2024-45231 -- Avoided server error on password reset when email sending fails. 2024-09-03 09:22:32 -03:00
class-based-views Fixed typo in docs/topics/class-based-views/mixins.txt. 2023-03-22 08:35:24 +01:00
db Fixed #35623 -- Documented that a field cannot be named 'check'. 2024-08-12 19:58:37 +02:00
forms Removed versionadded/changed annotations for 5.0. 2024-05-22 15:44:07 -03:00
http Fixed #35401 -- Documented the conditional_page() decorator. 2024-06-12 13:11:29 +02:00
i18n Dropped safeguards against very old versions of gettext. 2024-08-30 13:39:04 +02:00
testing Removed versionadded/changed annotations for 5.0. 2024-05-22 15:44:07 -03:00
async.txt Removed versionadded/changed annotations for 5.0. 2024-05-22 15:44:07 -03:00
cache.txt Removed Redis parser_class reference from docs. 2024-05-08 08:41:13 +02:00
checks.txt Fixed #35233 -- Moved template engine system checks to backend methods. 2024-03-27 08:14:54 +01:00
conditional-view-processing.txt Applied Black's 2024 stable style. 2024-01-26 12:45:07 +01:00
email.txt Used :pypi: role in docs where appropriate. 2024-08-05 10:35:50 -03:00
external-packages.txt Used extlinks for PyPI links. 2023-04-17 06:55:32 +02:00
files.txt Refs #25778 -- Updated some links and references to HTTPS. 2023-11-29 11:21:22 +01:00
index.txt Refs #30451 -- Doc'd asynchronous support and async-safety. 2019-12-03 17:29:10 +01:00
install.txt Relocated database setup details to install docs to simplify tutorial 2. 2024-07-04 15:30:52 -03:00
logging.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00
migrations.txt Removed versionadded/changed annotations for 5.0. 2024-05-22 15:44:07 -03:00
pagination.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00
performance.txt Used :pypi: role in docs where appropriate. 2024-08-05 10:35:50 -03:00
security.txt Refs #34140 -- Applied rst code-block to non-Python examples. 2023-02-10 19:19:13 +01:00
serialization.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00
settings.txt Updated "Dive Into Python" links. 2024-01-20 19:43:55 +01:00
signals.txt Removed versionadded/changed annotations for 5.0. 2024-05-22 15:44:07 -03:00
signing.txt Refs #33199 -- Removed support for passing positional arguments to Signer/TimestampSigner. 2023-09-18 22:12:40 +02:00
templates.txt Added meaningful titles to ..admonition:: directives. 2023-04-21 12:03:59 +02:00