AVG-1080 log

Package python-django
Status Fixed
Severity High
Type insufficient validation
Affected 2.2.6-1
Fixed 2.2.9-1
Current 4.2.7-1 [extra]
Ticket None
Created Thu Dec 19 21:30:17 2019
Issue Severity Remote Type Description
CVE-2019-19844 High Yes Insufficient validation
Django's password-reset form uses a case-insensitive query to retrieve accounts matching the email address requesting the password reset. Because this...