New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
HIGH 7.5 PyPI

Django denial-of-service vulnerability in internationalized URLs

GHSA-qrw5-5h28-6cmg · BIT-django-2022-41323 · CVE-2022-41323 · PYSEC-2022-304

Published · Modified

Description

In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression.

Ready to move

Start Securing

Free, no credit card | First findings in minutes