0.016 Low
EPSS
Percentile
87.6%
Django is vulnerable to denial of service (DoS) attacks. The library does not filter the input to the django.utils.numberformat.format() function, leading to a memory exhaustion when a malicious value is passed.
django.utils.numberformat.format()
docs.djangoproject.com/en/dev/releases/security/
github.com/django/django/commit/402c0caa851e265410fbcaa55318f22d2bf22ee2
www.djangoproject.com/weblog/2019/feb/11/security-releases/