VDB
CVE-2025-13372
CVE-2025-13372
PUBLISHED
Potential SQL injection in FilteredRelation column aliases on PostgreSQL
EPSS 0.01% · 0.3th percentile
Risk Scores
EPSS Score
0.01%
0.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | django | 4.2.0, 5.1.0, 5.2.0 |
| Bitnami | django | 4.2.0, 5.1.0, 5.2.0 |
Exploit Intelligence
- CIRCL seen: CVE-2025-13372 (circl-sighting)
- CIRCL seen: CVE-2025-13372 (circl-sighting)
- CIRCL seen: CVE-2025-13372 (circl-sighting)
- CIRCL seen: CVE-2025-13372 (circl-sighting)
- CIRCL seen: CVE-2025-13372 (circl-sighting)
- Django security archive (circl)
- Django releases announcements (circl)
- Django security releases issued: 5.2.9, 5.1.15, and 4.2.27 (circl)
- ghost_report_20260112_175243.json (github-poc)
- ghost_report_20260112_175243.json (github-poc)
…and 22 more exploits
Timeline
- Dec 2, 2025 CVE Published
- Dec 2, 2025 PoC Published
- Dec 2, 2025 PoC Published
- Dec 2, 2025 PoC Published
- Dec 3, 2025 EPSS Score
- Dec 3, 2025 PoC Published
- Dec 6, 2025 PoC Published
- Dec 7, 2025 EPSS Score
- Dec 12, 2025 EPSS Score
- Dec 16, 2025 EPSS Score
- Dec 21, 2025 EPSS Score
- Dec 25, 2025 EPSS Score