BIT-django-2026-1312 — Vulnetix

BIT-django-2026-1312 PUBLISHED CVSS 5.400000095367432 MEDIUM

Potential SQL injection via QuerySet.order_by and FilteredRelation

Risk Scores

CVSS v3.1

5.400000095367432

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions
Bitnami	django	4.2.0, 5.2.0, 6.0.0

Timeline

Feb 5, 2026 CVE Published
Feb 5, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›