Product Research Enterprise Plans Docs

PyPi: Misago

PVE-2022-45162

Safety vulnerability ID: 45162

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Feb 16, 2022 Updated at Jul 28, 2024

Advisory

Misago 0.14.0 handles maliciously constructed quasi urls sent to login view that passed '…

[This advisory has been limited. Please create a free account to view the full advisory.]

Affected package

misago

Latest version: 0.39.1

Misago is modern, fully featured forum application written in Python and ES6, powered by Django and React.js. It works out of the box and can be run alone or be connected to existing site with built in OAuth 2 client.

Affected versions

Fixed versions

Vulnerability changelog

Misago 0.14 is quality of life release that fixes error that may occur when spambots try …

[This text has been limited. Please create a free account to view the full text.]

Resources

https://pypi.org/project/misago
https://pyup.io/changelogs/misago/