FreeBSD : django -- XSS vulnerability (f49ba347-2190-11dd-907c-001c2514716c)
Medium Nessus Plugin ID 32350
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionDjango project reports :
The Django administration application will, when accessed by a user who is not sufficiently authenticated, display a login form and ask the user to provide the necessary credentials before displaying the requested page. This form will be submitted to the URL the user attempted to access, by supplying the current request path as the value of the form's 'action' attribute.
SolutionUpdate the affected packages.