VDB
GHSA-93gm-qmq6-w238
GHSA-93gm-qmq6-w238
REJECTED
CVSS 7.5 HIGH
Duplicate Advisory: Starlette Content-Type Header ReDoS
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| PyPI | starlette | 0.10.6, 0.12.2, 0.27.0 |
| PyPI | starlette | 0, 0 |
Exploit Intelligence
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- nuclei_routing.go (github-poc)
- nuclei_routing.go (github-poc)
Timeline
- Feb 4, 2026 CVE Rejected
- Feb 4, 2026 CVE Updated
References
- https://github.com/encode/starlette/security/advisories/GHSA-93gm-qmq6-w238 url
- https://github.com/encode/starlette/commit/13e5c26a27f4903924624736abd6131b2da80cc5 url
- https://github.com/andrew-d/python-multipart/blob/d3d16dae4b061c34fe9d3c9081d9800c49fc1f7a/multipart/multipart.py#L72-L74 url
- https://github.com/encode/starlette package
- GitHub Advisory GHSA-93gm-qmq6-w238 vendor-advisory