django

mirror of https://github.com/django/django.git synced 2025-12-23 09:19:27 +00:00

History

Mariusz Felisiak 01d2d770e2 [5.1.x] Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggregate(), and extra() against SQL injection in column aliases on MySQL/MariaDB. Thanks sw0rd1ight for the report. Follow up to `93cae5cb2f`. Backport of `41b43c74bd` from main.		2025-10-01 08:53:17 -04:00
..
__init__.py
models.py	Refs #33476 -- Reformatted code with Black.	2022-02-07 20:37:05 +01:00
tests.py	[5.1.x] Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggregate(), and extra() against SQL injection in column aliases on MySQL/MariaDB.	2025-10-01 08:53:17 -04:00