0.003 Low
EPSS
Percentile
70.6%
django is vulnerable to SQL Injection. The vulnerability exists due to a lack of sanitization of input via the QuerySet.explain() allowing an attacker to inject malicious query via the **options argument.
QuerySet.explain()
www.openwall.com/lists/oss-security/2022/04/11/1
docs.djangoproject.com/en/4.0/releases/security/
groups.google.com/forum/#!forum/django-announce
secdb.alpinelinux.org/edge/community.yaml
www.debian.org/security/2022/dsa-5254
www.djangoproject.com/weblog/2022/apr/11/security-releases/