CVE-2016-6186

MEDIUM

Django <1.8.14, <1.9.x, <1.10rc1 - XSS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6186. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary This is a detailed technical writeup describing a persistent XSS vulnerability in Django CMS v3.3.0, where the 'Name' field in the 'Editor Snippet' module fails to properly escape user input, allowing script execution in the snippet listing context.

Description

Cross-site scripting (XSS) vulnerability in the dismissChangeRelatedObjectPopup function in contrib/admin/static/admin/js/admin/RelatedObjectLookups.js in Django before 1.8.14, 1.9.x before 1.9.8, and 1.10.x before 1.10rc1 allows remote attackers to inject arbitrary web script or HTML via vectors involving unsafe usage of Element.innerHTML.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Vulnerability-Lab · textwebappspython
https://www.exploit-db.com/exploits/40129

This is a detailed technical writeup describing a persistent XSS vulnerability in Django CMS v3.3.0, where the 'Name' field in the 'Editor Snippet' module fails to properly escape user input, allowing script execution in the snippet listing context.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Django CMS v3.3.0
Auth required
Prerequisites: Low-privileged user account · Access to the Django CMS editor interface
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (17)

Core 17
Core References
VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1036338
Mailing List, Patch mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2016/Jul/53
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1594.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3622
Patch, Third Party Advisory x_refsource_misc
http://www.vulnerability-lab.com/get_content.php?id=1869
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/538947/100/0/threaded
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-3039-1
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1596.html
Patch, Vendor Advisory x_refsource_confirm
https://www.djangoproject.com/weblog/2016/jul/18/security-releases/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92058
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1595.html
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/40129/

Scores

CVSS v3 6.1
EPSS 0.1637
EPSS Percentile 95.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (13)
debian/debian_linux 8.0
djangoproject/django 1.9
djangoproject/django 1.9.0 rc1
djangoproject/django 1.9.1
djangoproject/django 1.9.2
djangoproject/django 1.9.3
djangoproject/django 1.9.4
djangoproject/django 1.9.5
djangoproject/django 1.9.6
djangoproject/django 1.9.7
... and 3 more
Published Aug 05, 2016
Tracked Since Feb 18, 2026