Description
In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uri_to_iri() is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.
Remediation
References
Related Vulnerabilities
WordPress Plugin Plugin:Newsletter 'data' Parameter Information Disclosure (1.5)
WordPress Plugin WP Bannerize 'ajax_clickcounter.php' SQL Injection (2.8.6)
WordPress Plugin Database Backup for WordPress 'edit.php' Directory Traversal (1.7)
Python CVE-2019-17514 Vulnerability (CVE-2019-17514)
WordPress Plugin WordPress Photo Gallery by Gallery Bank Cross-Site Scripting (3.0.69)