mirror of
https://github.com/astral-sh/ruff.git
synced 2025-10-01 14:21:53 +00:00
13 lines
663 B
Python
13 lines
663 B
Python
from django.db.models.expressions import RawSQL
|
|
from django.contrib.auth.models import User
|
|
|
|
User.objects.annotate(val=RawSQL('secure', []))
|
|
User.objects.annotate(val=RawSQL('%secure' % 'nos', []))
|
|
User.objects.annotate(val=RawSQL('{}secure'.format('no'), []))
|
|
raw = '"username") AS "val" FROM "auth_user" WHERE "username"="admin" --'
|
|
User.objects.annotate(val=RawSQL(raw, []))
|
|
raw = '"username") AS "val" FROM "auth_user"' \
|
|
' WHERE "username"="admin" OR 1=%s --'
|
|
User.objects.annotate(val=RawSQL(raw, [0]))
|
|
User.objects.annotate(val=RawSQL(sql='{}secure'.format('no'), params=[]))
|
|
User.objects.annotate(val=RawSQL(params=[], sql='{}secure'.format('no')))
|