CVE-2018-6188 – django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1. …

5 February 2018

Vuln ID: CVE-2018-6188

Published: 2018-02-05 03:29:00Z

Description: django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1.11.9, allows remote attackers to obtain potentially sensitive information by leveraging data exposure from the confirm_login_allowed() method, as demonstrated by discovering whether a user account is inactive.

Source: NVD.NIST.GOV

Date:

5 February 2018

Categorie(s):

NEWS

Tag(s):

Security budgets are growing, but so is vendor sprawl27 April 2024
The Top 5 Benefits Of Using Outsourcing Services27 April 2024
How To Repair PST Files In Under 5 Minutes Like A Pro27 April 2024
How To Secure Your Snapchat Account27 April 2024
How To Prevent Xiaomi From Spying On You And Stealing Your Data27 April 2024