An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header.
"https://github.com/pypa/advisory-database/blob/main/vulns/mezzanine/PYSEC-2026-1626.yaml"