Description
python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.
Remediation
References
Related Vulnerabilities
WordPress Plugin FL3R FeelBox Multiple Vulnerabilities (8.1)
WordPress Plugin Social Photo Gallery Remote Code Execution (1.0)
WordPress Plugin WP User Manager-User Profile Builder & Membership Security Bypass (2.6.2)
WordPress Plugin Ads Pro-Multi-Purpose WordPress Advertising Manager Multiple Vulnerabilities (3.4)
WordPress Plugin ALO EasyMail Newsletter Cross-Site Request Forgery (2.6.01)