VDB

MAGEIA-2016-334

MAGEIA-2016-334 PUBLISHED

CVE-2016-7401: CSRF protection bypass on a site with Google Analytics An interaction between Google Analytics and Django's cookie parsing could allow an attacker to set arbitrary cookies leading to a bypass of CSRF protection.

Affected Products

VendorProductVersions
Mageiapython-django1.8.15-1.mga5, 0

Timeline

  • Oct 4, 2016 CVE Updated
  • Oct 4, 2016 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›