VDB
DEBIAN-CVE-2022-28346
DEBIAN-CVE-2022-28346
PUBLISHED
CVSS 9.800000190734863 CRITICAL
An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | python-django | *, 2.2.25-1, 2.2.26-1 |
| Debian:12 | python-django | 0, 0, 0 |
| Debian:13 | python-django | 0, 0, 0 |
| Debian:14 | python-django | 0, 0, 0 |
Exploit Intelligence
- A flaw was found in the Django package, which leads to a SQL injection. This flaw allows an attacker using a crafted dictionary containing malicious SQL queries to compromise the database completely. (github-poc-repo)
- A flaw was found in the Django package, which leads to a SQL injection. This flaw allows an attacker using a crafted dictionary containing malicious SQL queries to compromise the database completely. (github-poc)
- An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs. (github-poc)
- Django QuerySet.annotate(), aggregate(), extra() SQL 注入 (github-poc)
- SQL injection in QuerySet.annotate(), aggregate(), and extra() (github-poc)
Timeline
- Apr 12, 2022 CVE Published
- Apr 28, 2026 CVE Updated