wagtail is vulnerable to Denial of Service (DoS)
43
Medium Risk
The image preview endpoint accepts arbitrary filter specs without restricting the allowed operations. An authenticated Wagtail admin user can request purposefully crafted filter specs that trigger expensive rendition processing. This can lead to service degradation through uncontrolled resource consumption. The fix limits the preview endpoint to a small set of allowed filter operations.
You are affected if you are using a version that falls within the vulnerable range and grant users access to the Wagtail admin.
wagtail is vulnerable to Denial of Service (DoS) in versions 0.0.1 - 7.0.7, 7.1.0 - 7.3.2 and 7.4.0 - 7.4.1.
Upgrade the wagtail library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant