CVE-2024-21520 | djangorestframework up to 3.15.1 Template Filter break_long_headers cross site scripting (SNYK-PYTHON-DJANGORESTFRAMEWORK-7252137)

Posted by Angelo Barbosa | Jun 26, 2024 | CVE

A vulnerability classified as problematic was found in djangorestframework up to 3.15.1. Affected by this vulnerability is the function break_long_headers of the component Template Filter Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-21520. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21520 | djangorestframework up to 3.15.1 Template Filter break_long_headers cross site scripting (SNYK-PYTHON-DJANGORESTFRAMEWORK-7252137)

Related Posts

CVE-2023-49652 | Google Compute Engine Plugin 4.550.vb_327fca_3db_11 on Jenkins permission

CVE-2024-26222 | Microsoft unknown vulnerability

CVE-2024-3588 | Getwid Plugin up to 2.0.7 on WordPress Countdown cross site scripting

CVE-2024-45039 | Consensys gnark up to 0.11.0 (GHSA-q3hw-3gm4-w5cr)