CVE-2025-64460 | Django up to 4.2.26/5.1.14/5.2.8 algorithmic complexity (EUVD-2025-200248)

A vulnerability classified as problematic was found in Django up to 4.2.26/5.1.14/5.2.8. Affected by this issue is some unknown functionality of the component django.core.serializers.xml_serializer.getInnerText. Such manipulation leads to inefficient algorithmic complexity.

This vulnerability is uniquely identified as CVE-2025-64460. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More