[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-41323":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":31,"aliases":32,"duplicate_of":9,"upstream":36,"downstream":37,"duplicates":66,"related":67,"reserved_at":9,"published_at":76,"modified_at":77,"state":78,"summary":79,"references_raw":88,"kevs":196,"epss":197,"epss_history":200,"metrics":462,"affected":475},"CVE-2022-41323","In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression.",null,[11,18],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],{"_key":19,"id":19,"name":20,"description":21,"type":22,"status":23,"abstraction":24,"likelihood_of_exploit":25,"capec":26},"CWE-1333","Inefficient Regular Expression Complexity","The product uses a regular expression with a worst-case computational complexity that is inefficient and possibly exponential.","weakness","Draft","Base","High",[27],{"id":28,"name":29,"techniques":30},"CAPEC-492","Regular Expression Exponential Blowup",[],[],[33,34,35],"GHSA-qrw5-5h28-6cmg","BIT-django-2022-41323","PYSEC-2022-304",[],[38,40,42,44,46,48,50,52,54,56,58,60,62,64],{"_key":39},"OPENSUSE-SU-2023:0057-1",{"_key":41},"UBUNTU-CVE-2022-41323",{"_key":43},"USN-5653-1",{"_key":45},"OPENSUSE-SU-2023:0005-1",{"_key":47},"OPENSUSE-SU-2023:0178-1",{"_key":49},"OPENSUSE-SU-2024:12396-1",{"_key":51},"OPENSUSE-SU-2024:14208-1",{"_key":53},"OPENSUSE-SU-2025:14662-1",{"_key":55},"DSA-5254-1",{"_key":57},"RHSA-2023:0742",{"_key":59},"OPENSUSE-SU-2026:10005-1",{"_key":61},"MGASA-2023-0026",{"_key":63},"DEBIAN-CVE-2022-41323",{"_key":65},"RHSA-2023:2097",[],[68,69,70,71,72,73,74,75],{"_key":39},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":59},{"_key":61},"2022-10-16T00:00:00.000Z","2025-05-14T14:39:38.619Z","Modified",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":81,"epss_score":82,"severity":83,"severity_score":84,"severity_version":85,"severity_source":86,"severity_vector":87,"severity_status":78},false,"medium",0.16325,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[89,94,102,107,114,118,122,126,130,134,138,143,147,151,155,160,164,168,172,176,180,184,188,192],{"url":90,"sources":91,"tags":93},"https://groups.google.com/forum/#%21forum/django-announce",[86,92],"nvd",[],{"url":95,"sources":96,"tags":98},"https://docs.djangoproject.com/en/4.0/releases/security/",[86,92,97],"osv_pypi",[99,100,101],"Release Notes","Vendor Advisory","WEB",{"url":103,"sources":104,"tags":105},"https://www.djangoproject.com/weblog/2022/oct/04/security-releases/",[86,92,97],[100,106],"ARTICLE",{"url":108,"sources":109,"tags":110},"https://github.com/django/django/commit/5b6b257fa7ec37ff27965358800c67e2dd11c924",[86,92,97],[111,112,101,113],"Patch","Third Party Advisory","FIX",{"url":115,"sources":116,"tags":117},"https://security.netapp.com/advisory/ntap-20221124-0001/",[86,92],[112],{"url":119,"sources":120,"tags":121},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77/",[86,92],[100],{"url":123,"sources":124,"tags":125},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B/",[86,92],[100],{"url":127,"sources":128,"tags":129},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP/",[86,92],[100],{"url":131,"sources":132,"tags":133},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/",[86,92],[100],{"url":135,"sources":136,"tags":137},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/",[86,92],[100],{"url":139,"sources":140,"tags":141},"https://nvd.nist.gov/vuln/detail/CVE-2022-41323",[97],[142],"Advisory",{"url":144,"sources":145,"tags":146},"https://github.com/django/django/commit/23f0093125ac2e553da6c1b2f9988eb6a3dd2ea1",[97],[101],{"url":148,"sources":149,"tags":150},"https://github.com/django/django/commit/9d656ea51d9ea7105c0c0785783ac29d426a7d25",[97],[101],{"url":152,"sources":153,"tags":154},"https://docs.djangoproject.com/en/4.0/releases/security",[97],[101],{"url":156,"sources":157,"tags":158},"https://github.com/django/django",[97],[159],"PACKAGE",{"url":161,"sources":162,"tags":163},"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-304.yaml",[97],[101],{"url":165,"sources":166,"tags":167},"https://groups.google.com/forum/#!forum/django-announce",[97],[101],{"url":169,"sources":170,"tags":171},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B",[97],[101],{"url":173,"sources":174,"tags":175},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK",[97],[101],{"url":177,"sources":178,"tags":179},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI",[97],[101],{"url":181,"sources":182,"tags":183},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77",[97],[101],{"url":185,"sources":186,"tags":187},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP",[97],[101],{"url":189,"sources":190,"tags":191},"https://security.netapp.com/advisory/ntap-20221124-0001",[97],[101],{"url":193,"sources":194,"tags":195},"https://www.djangoproject.com/weblog/2022/oct/04/security-releases",[97],[101],[],{"date":198,"score":82,"percentile":199},"2026-06-04",0.94974,[201,205,208,210,213,216,219,222,225,228,231,234,237,240,243,247,249,252,255,257,260,263,266,269,271,274,277,280,284,287,290,293,296,299,302,304,307,310,313,316,318,320,323,326,329,332,335,337,340,343,346,349,351,355,358,361,364,367,370,373,376,378,381,384,386,389,392,395,398,400,403,406,409,411,414,417,421,424,427,430,433,436,439,442,445,448,451,453,456,459],{"date":202,"score":203,"percentile":204},"2025-11-04",0.07349,0.9128,{"date":206,"score":203,"percentile":207},"2025-11-05",0.91277,{"date":209,"score":203,"percentile":204},"2025-11-06",{"date":211,"score":203,"percentile":212},"2025-11-07",0.91286,{"date":214,"score":203,"percentile":215},"2025-11-08",0.91285,{"date":217,"score":203,"percentile":218},"2025-11-09",0.91281,{"date":220,"score":203,"percentile":221},"2025-11-10",0.91283,{"date":223,"score":203,"percentile":224},"2025-11-11",0.91288,{"date":226,"score":203,"percentile":227},"2025-11-12",0.91291,{"date":229,"score":203,"percentile":230},"2025-11-13",0.91294,{"date":232,"score":203,"percentile":233},"2025-11-14",0.91296,{"date":235,"score":203,"percentile":236},"2025-11-15",0.91293,{"date":238,"score":203,"percentile":239},"2025-11-16",0.91301,{"date":241,"score":203,"percentile":242},"2025-11-17",0.913,{"date":244,"score":245,"percentile":246},"2025-11-18",0.45615,0.97464,{"date":248,"score":245,"percentile":246},"2025-11-19",{"date":250,"score":245,"percentile":251},"2025-11-20",0.97466,{"date":253,"score":203,"percentile":254},"2025-11-21",0.9131,{"date":256,"score":203,"percentile":254},"2025-11-22",{"date":258,"score":203,"percentile":259},"2025-11-23",0.91316,{"date":261,"score":203,"percentile":262},"2025-11-24",0.91317,{"date":264,"score":203,"percentile":265},"2025-11-25",0.9132,{"date":267,"score":203,"percentile":268},"2025-11-26",0.91319,{"date":270,"score":203,"percentile":268},"2025-11-27",{"date":272,"score":203,"percentile":273},"2025-11-28",0.91312,{"date":275,"score":203,"percentile":276},"2025-11-29",0.91342,{"date":278,"score":203,"percentile":279},"2025-11-30",0.9134,{"date":281,"score":282,"percentile":283},"2025-12-01",0.03163,0.86525,{"date":285,"score":282,"percentile":286},"2025-12-02",0.86527,{"date":288,"score":282,"percentile":289},"2025-12-03",0.86526,{"date":291,"score":203,"percentile":292},"2025-12-04",0.91336,{"date":294,"score":203,"percentile":295},"2025-12-05",0.91338,{"date":297,"score":203,"percentile":298},"2025-12-06",0.91339,{"date":300,"score":203,"percentile":301},"2025-12-07",0.91337,{"date":303,"score":203,"percentile":295},"2025-12-08",{"date":305,"score":203,"percentile":306},"2025-12-09",0.91341,{"date":308,"score":203,"percentile":309},"2025-12-10",0.91348,{"date":311,"score":203,"percentile":312},"2025-12-11",0.91353,{"date":314,"score":203,"percentile":315},"2025-12-12",0.91354,{"date":317,"score":203,"percentile":276},"2025-12-13",{"date":319,"score":203,"percentile":306},"2025-12-14",{"date":321,"score":203,"percentile":322},"2025-12-15",0.91344,{"date":324,"score":203,"percentile":325},"2025-12-16",0.9137,{"date":327,"score":203,"percentile":328},"2025-12-17",0.91378,{"date":330,"score":203,"percentile":331},"2025-12-18",0.91383,{"date":333,"score":203,"percentile":334},"2025-12-19",0.91385,{"date":336,"score":203,"percentile":334},"2025-12-20",{"date":338,"score":203,"percentile":339},"2025-12-21",0.91387,{"date":341,"score":203,"percentile":342},"2025-12-22",0.91382,{"date":344,"score":203,"percentile":345},"2025-12-23",0.91391,{"date":347,"score":203,"percentile":348},"2025-12-24",0.91397,{"date":350,"score":203,"percentile":348},"2025-12-25",{"date":352,"score":353,"percentile":354},"2025-12-26",0.06362,0.90675,{"date":356,"score":353,"percentile":357},"2025-12-27",0.90725,{"date":359,"score":353,"percentile":360},"2025-12-28",0.90673,{"date":362,"score":353,"percentile":363},"2025-12-29",0.90669,{"date":365,"score":353,"percentile":366},"2025-12-30",0.90674,{"date":368,"score":353,"percentile":369},"2025-12-31",0.90684,{"date":371,"score":282,"percentile":372},"2026-01-01",0.86586,{"date":374,"score":282,"percentile":375},"2026-01-02",0.86587,{"date":377,"score":282,"percentile":375},"2026-01-03",{"date":379,"score":353,"percentile":380},"2026-01-04",0.90694,{"date":382,"score":353,"percentile":383},"2026-01-05",0.90692,{"date":385,"score":353,"percentile":380},"2026-01-06",{"date":387,"score":353,"percentile":388},"2026-01-07",0.90697,{"date":390,"score":353,"percentile":391},"2026-01-08",0.907,{"date":393,"score":353,"percentile":394},"2026-01-09",0.90702,{"date":396,"score":353,"percentile":397},"2026-01-10",0.90704,{"date":399,"score":353,"percentile":388},"2026-01-11",{"date":401,"score":353,"percentile":402},"2026-01-12",0.90698,{"date":404,"score":353,"percentile":405},"2026-01-13",0.90696,{"date":407,"score":353,"percentile":408},"2026-01-14",0.90709,{"date":410,"score":353,"percentile":408},"2026-01-15",{"date":412,"score":353,"percentile":413},"2026-01-16",0.90713,{"date":415,"score":353,"percentile":416},"2026-01-17",0.90714,{"date":418,"score":419,"percentile":420},"2026-01-18",0.06525,0.90838,{"date":422,"score":419,"percentile":423},"2026-01-19",0.90839,{"date":425,"score":419,"percentile":426},"2026-01-20",0.9084,{"date":428,"score":419,"percentile":429},"2026-01-21",0.90845,{"date":431,"score":419,"percentile":432},"2026-01-22",0.90846,{"date":434,"score":419,"percentile":435},"2026-01-23",0.90854,{"date":437,"score":419,"percentile":438},"2026-01-24",0.90863,{"date":440,"score":419,"percentile":441},"2026-01-25",0.90864,{"date":443,"score":353,"percentile":444},"2026-01-26",0.90741,{"date":446,"score":353,"percentile":447},"2026-01-27",0.90743,{"date":449,"score":353,"percentile":450},"2026-01-28",0.90748,{"date":452,"score":353,"percentile":450},"2026-01-29",{"date":454,"score":353,"percentile":455},"2026-01-30",0.90747,{"date":457,"score":353,"percentile":458},"2026-01-31",0.90749,{"date":460,"score":282,"percentile":461},"2026-02-01",0.86634,[463,468,470],{"source":86,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":464,"cvss_v4_0":9},{"baseScore":84,"baseSeverity":465,"vectorString":87,"impactScore":466,"exploitabilityScore":467},"HIGH",6,10,{"source":92,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":469,"cvss_v4_0":9},{"baseScore":84,"baseSeverity":465,"vectorString":87,"impactScore":466,"exploitabilityScore":467},{"source":97,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":471,"cvss_v4_0":472},{"baseScore":84,"baseSeverity":9,"vectorString":87,"impactScore":466,"exploitabilityScore":467},{"baseScore":473,"baseSeverity":9,"vectorString":474,"impactScore":9,"exploitabilityScore":9},8.7,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",[476,498],{"ecosystem":9,"name":477,"vendor":478,"product":479,"cpe_part":480,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":481},"Django","djangoproject","django","a",[482,490,494],{"version":483,"is_range":484,"range_type":485,"version_start":486,"version_start_type":487,"version_end":488,"version_end_type":489,"fixed_in":9},"gte3.2_lt3.2.16",true,"cpe","3.2","including","3.2.16","excluding",{"version":491,"is_range":484,"range_type":485,"version_start":492,"version_start_type":487,"version_end":493,"version_end_type":489,"fixed_in":9},"gte4.0_lt4.0.8","4.0","4.0.8",{"version":495,"is_range":484,"range_type":485,"version_start":496,"version_start_type":487,"version_end":497,"version_end_type":489,"fixed_in":9},"gte4.1_lt4.1.2","4.1","4.1.2",{"ecosystem":499,"name":479,"vendor":499,"product":479,"cpe_part":9,"purl_type":500,"purl_namespace":9,"purl_name":479,"source":9,"versions":501},"PyPI","pypi",[502,505,507,510],{"version":503,"is_range":484,"range_type":504,"version_start":486,"version_start_type":487,"version_end":488,"version_end_type":489,"fixed_in":9},"gte3_2_lt3_2_16","ecosystem",{"version":506,"is_range":484,"range_type":504,"version_start":492,"version_start_type":487,"version_end":493,"version_end_type":489,"fixed_in":9},"gte4_0_lt4_0_8",{"version":508,"is_range":484,"range_type":504,"version_start":9,"version_start_type":9,"version_end":509,"version_end_type":489,"fixed_in":9},"lt5b6b257fa7ec37ff27965358800c67e2dd11c924","5b6b257fa7ec37ff27965358800c67e2dd11c924",{"version":511,"is_range":484,"range_type":504,"version_start":496,"version_start_type":487,"version_end":497,"version_end_type":489,"fixed_in":9},"gte4_1_lt4_1_2"]