Django Security Vulnerability CVE-2020-7471 - Printable Version +- Python Forum (https://python-forum.io) +-- Forum: General (https://python-forum.io/forum-1.html) +--- Forum: News and Discussions (https://python-forum.io/forum-31.html) +--- Thread: Django Security Vulnerability CVE-2020-7471 (/thread-24659.html) |
Django Security Vulnerability CVE-2020-7471 - buran - Feb-26-2020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7471 Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitably crafted delimiter to a contrib.postgres.aggregates.StringAgg instance, it was possible to break escaping and inject malicious SQL. |