Denial of Service : Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.154457

Category: Denial of Service

Title: Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability - Windows

Summary: Django is prone to a denial of service (DoS) vulnerability.

Description: Summary:
Django is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
django.utils.html.strip_tags() are slow to evaluate certain
inputs containing large sequences of incomplete HTML tags.

Affected Software/OS:
Django version 4.x prior to 4.2.21, 5.0.x, 5.1.x prior to
5.1.9 and 5.2.x prior to 5.2.1.

Solution:
Update to version 4.2.21, 5.1.9, 5.2.1 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2025-32873

Copyright Copyright (C) 2025 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.154457
Category:	Denial of Service
Title:	Django 4.x < 4.2.21, 5.0.x < 5.1.9, 5.2.x < 5.2.1 DoS Vulnerability - Windows
Summary:	Django is prone to a denial of service (DoS) vulnerability.
Description:	Summary: Django is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: django.utils.html.strip_tags() are slow to evaluate certain inputs containing large sequences of incomplete HTML tags. Affected Software/OS: Django version 4.x prior to 4.2.21, 5.0.x, 5.1.x prior to 5.1.9 and 5.2.x prior to 5.2.1. Solution: Update to version 4.2.21, 5.1.9, 5.2.1 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2025-32873
Copyright	Copyright (C) 2025 Greenbone AG