Security Advisory

CVE-2018-25045

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-23 01:43:37

Last updated 2024-08-05 12:26:39

Assigner mitre

State PUBLISHED

Django REST framework (aka django-rest-framework) before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping.