Cross-Site Scripting | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

Cross-Site Scripting

Django-Rest-Framework, before 3.9.1, has a XSS vulnerability caused by disabled autoescaping in the default DRF Browsable API view templates.

Published: Feb 24, 2021
Updated: Apr 14, 2023
GHSA: GHSA-57h7-r3q3-w57j
Severity: Medium
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
djangorestframework	-	3.9.1