-
Notifications
You must be signed in to change notification settings - Fork 37
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Med] Snyk - Man-in-the-Middle - django (due 9/1/19) #3023
Comments
Requested wagtail access through fec-accounts repo. |
Initially updated added to |
|
thank you @lbeaufort for the Django Roadmap which details |
Upgrade to
Will upgrade under this PR to |
Man-in-the-Middle (MitM)
Vulnerable module: django
Introduced through: django-libsass@0.7, django-jinja@2.4.1 and others
Detailed paths
Introduced through: project@0.0.0 › django-libsass@0.7 › django-compressor@2.3 › django-appconf@1.0.3 › django@1.11.20
Introduced through: project@0.0.0 › django-jinja@2.4.1 › django@1.11.20
Introduced through: project@0.0.0 › cg-django-uaa@1.3.0 › django@1.11.20
Introduced through: project@0.0.0 › django@1.11.20
Remediation
Upgrade django to version 1.11.22, 2.1.10, 2.2.3 or higher.
https://app.snyk.io/vuln/SNYK-PYTHON-DJANGO-451300
To do
The text was updated successfully, but these errors were encountered: