IP spoofing bug leaves Django REST applications open to DDoS, password-cracking attacks
An IP spoofing vulnerability in Django REST allowed attackers to circumvent the framework’s throttling feature, which is supposed to protect applications against mass requests.