Safety vulnerability ID: 60956
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Affected versions of Django are vulnerable to potential Denial of Service via certain inputs with a very large number of Unicode characters in django.utils.encoding.uri_to_iri().
Latest version: 5.1.4
A high-level Python web framework that encourages rapid development and clean, pragmatic design.
===========================
*September 4, 2023*
Django 3.2.21 fixes a security issue with severity "moderate" in 3.2.20.
CVE-2023-41164: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()``
===================================================================================================
``django.utils.encoding.uri_to_iri()`` was subject to potential denial of
service attack via certain inputs with a very large number of Unicode
characters.
===========================
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application