Description
ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_hidden_initial is set to True, allows remote attackers to cause a denial of service by submitting duplicate values, which triggers a large number of SQL queries.
Remediation
References
Related Vulnerabilities
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6146)
OpenSSL Other Vulnerability (CVE-2015-0207)
Oracle Database Server CVE-2006-5339 Vulnerability (CVE-2006-5339)
WordPress Plugin Photospace Gallery Cross-Site Scripting (2.3.5)
WordPress Plugin Stockdio Historical Chart Cross-Site Scripting (2.7.2)