diff options
| author | Jake Howard <git@theorangeone.net> | 2025-08-13 14:13:42 +0200 |
|---|---|---|
| committer | Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> | 2025-09-03 13:39:26 +0200 |
| commit | 31334e6965ad136a5e369993b01721499c5d1a92 (patch) | |
| tree | 3a573a3b716089b6854e2c089c26b3ae1d9c28da /django/__init__.py | |
| parent | d5860d55ebe3623e6c6f8d6c5a1cdb28ae4a7505 (diff) | |
[4.2.x] Fixed CVE-2025-57833 -- Protected FilteredRelation against SQL injection in column aliases.
Thanks Eyal Gabay (EyalSec) for the report.
Backport of 51711717098d3f469f795dfa6bc3758b24f69ef7 from main.
Diffstat (limited to 'django/__init__.py')
0 files changed, 0 insertions, 0 deletions