VDB
GCVE-110-MAGEIA-2025-243
GCVE-110-MAGEIA-2025-243
Advisory Published
An issue was discovered in Django 4.2 before 4.2.25, 5.1 before 5.1.13,
and 5.2 before 5.2.7. QuerySet.annotate(), QuerySet.alias(),
QuerySet.aggregate(), and QuerySet.extra() are subject to SQL injection
in column aliases, when using a suitably crafted dictionary, with
dictionary expansion, as the **kwargs passed to these methods (on MySQL
and MariaDB). (CVE-2025-59681)
An issue was discovered in Django 4.2 before 4.2.25, 5.1 before 5.1.13,
and 5.2 before 5.2.7. The django.utils.archive.extract() function, used
by the "startapp --template" and "startproject --template" commands,
allows partial directory traversal via an archive with file paths
sharing a common prefix with the target directory. (CVE-2025-59682)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | python-django | 0 (affected), 4.1.13-1.7.mga9 (unaffected) | — |
Aliases
Browse GCVE Records
73,738 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.