A security issue has been found in Django before version 3.2.10. HTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL paths.
A security issue has been found in Django before version 3.2.10. HTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL paths.
https://www.djangoproject.com/weblog/2021/dec/07/security-releases/ https://github.com/django/django/commit/333c65603032c377e682cdbd7388657a5463a05a