CVE-2015-2241
- Source
- https://cve.org/CVERecord?id=CVE-2015-2241
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2015-2241.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2015-2241
- Aliases
- Downstream
- Related
- Published
- 2015-03-12T14:59:05Z
- Modified
- 2026-02-05T07:01:31.859714Z
- Summary
- [none]
- Details
-
Cross-site scripting (XSS) vulnerability in the contents function in admin/helpers.py in Django before 1.7.6 and 1.8 before 1.8b2 allows remote attackers to inject arbitrary web script or HTML via a model attribute in ModelAdmin.readonly_fields, as demonstrated by a @property.
- References