Description
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and urlizetrunc template filters, and the AdminURLFieldWidget widget, are subject to a potential denial-of-service attack via certain inputs with a very large number of Unicode characters.
Remediation
References
Related Vulnerabilities
Drupal Core 8.8.x Information Disclosure (8.8.0 - 8.8.9)
WordPress Plugin YITH WooCommerce PDF Invoice and Shipping List Security Bypass (1.2.12)
WordPress Plugin The Events Calendar Countdown Addon Security Bypass (1.3.1)
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-46242)
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Unspecified Vulnerability (2.11.0)