Mar 22 2014

Django strip_tags Bypass Vulnerability & Exploitation

published by mehmet ince
in blog Mehmet Dursun INCE
original entryDjango strip_tags Bypass Vulnerability & Exploitation

application security django penetration test security advisory

DjangoHi Today, official django twitter account released a new security advisory for Django framework.  Security advisory: strip_tags safety We’ve received a report that the django.utils.html.strip_tags function (and also the related striptags template filter) did not correctly strip some obfuscated tags. This particular issue has been resolved in future releases of Django 1.6 and 1.7. While investigating this issue, we found …

Tag cloud

Social Sharing