Description
The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation, which allows remote attackers to cause a denial of service (memory consumption) by uploading an image file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Count per Day Information Disclosure (3.2.5)
WordPress Plugin Parallax Scroll Cross-Site Scripting (2.0.1)
WordPress Plugin Better User Shortcodes Multiple Cross-Site Scripting Vulnerabilities (1.0)
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
WordPress Plugin Aspose Cloud eBook Generator Arbitrary File Download (1.0)