Your submission was sent successfully! Close

CVE-2022-28346

Published: 11 April 2022

An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.

Priority

High

CVSS 3 base score: 9.8

Status

Package Release Status
python-django
Launchpad, Ubuntu, Debian
bionic
Released (1:1.11.11-1ubuntu1.17)
focal
Released (2:2.2.12-1ubuntu0.11)
impish
Released (2:2.2.24-1ubuntu1.4)
jammy
Released (3.2.12-2ubuntu1)
trusty
Released (1.6.11-0ubuntu1.3+esm5)
upstream
Released (3.2.13,2.2.28)
xenial
Released (1.8.7-1ubuntu5.15+esm5)