| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-10-01 | Fixed CVE-2025-59682 -- Fixed potential partial directory-traversal via ↵ | Sarah Boyce | |
| archive.extract(). Thanks stackered for the report. Follow up to 05413afa8c18cdb978fcdf470e09f7a12b234a23. | |||
| 2025-10-01 | Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggregate(), ↵ | Mariusz Felisiak | |
| and extra() against SQL injection in column aliases on MySQL/MariaDB. Thanks sw0rd1ight for the report. Follow up to 93cae5cb2f9a4ef1514cf1a41f714fef08005200. | |||
| 2025-09-30 | Made cosmetic edits to 5.2.7 release notes. | Jacob Walls | |
| 2025-09-24 | Added stub release notes and release date for 5.2.7, 5.1.13, and 4.2.25. | Mariusz Felisiak | |
| 2025-09-18 | Updated translations from Transifex. | Natalia | |
| Forwardport of 2a2936c3e6444a0f37156773ca405cedaf28dea7 from stable/5.2.x. | |||
| 2025-09-17 | Fixed #36601 -- Fixed color contrast of FilteredSelectMultiple widget chosen ↵ | antoliny0919 | |
| labels in TabularInlines. Regression in a0f50c2a483678d31bd1ad6f08fd3a0b8399e27b. | |||
| 2025-09-03 | Added stub release notes for 5.2.7. | Sarah Boyce | |
