AVG-1080 log
Package | python-django |
Status | Fixed |
Severity | High |
Type | insufficient validation |
Affected | 2.2.6-1 |
Fixed | 2.2.9-1 |
Current | 5.1.4-1 [extra] |
Ticket | None |
Created | Thu Dec 19 21:30:17 2019 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2019-19844 | High | Yes | Insufficient validation | Django's password-reset form uses a case-insensitive query to retrieve accounts matching the email address requesting the password reset. Because this... |