Description
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a crafted (1) EmailField (email address) or (2) URLField (URL) that triggers a large amount of backtracking in a regular expression.
Remediation
References
Related Vulnerabilities
Dolibarr Incorrect Authorization Vulnerability (CVE-2020-12669)
Grafana URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29170)
concrete5 Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-13790)
Oracle Database Server CVE-2019-2517 Vulnerability (CVE-2019-2517)
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732)