This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
A cross-site request forgery vulnerability was discovered in Django
that, if exploited, could be used to perform unrequested deletion or
modification of data. Updated versions of Django will now discard
posts from users whose sessions have expired, so data will need to be
re-entered in these cases (CVE-2008-3909).
The versions of Django shipping with Mandriva Linux have been updated
to the latest patched versions that include the fix for this issue. In
addition, they provide other bug fixes.
See also :
Update the affected python-django package.
Risk factor :
Medium / CVSS Base Score : 5.8