CVE-2019-15486: Cross-site Scripting in django-js-reverse
(updated )
django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline.
References
- github.com/advisories/GHSA-vx6v-2rg6-865h
- github.com/ierror/django-js-reverse
- github.com/ierror/django-js-reverse/commit/78d6aff2276f2d341f643b095515f8aaba5e67c2
- github.com/ierror/django-js-reverse/commit/a3b57d1e4424e2fadabcd526d170c4868d55159c
- github.com/ierror/django-js-reverse/compare/v0.9.0...v0.9.1
- github.com/ierror/django-js-reverse/pull/81
- github.com/pypa/advisory-database/tree/main/vulns/django-js-reverse/PYSEC-2019-19.yaml
- nvd.nist.gov/vuln/detail/CVE-2019-15486
Code Behaviors & Features
Detect and mitigate CVE-2019-15486 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →