CVE-2022-34265

CRITICAL9.8EPSS 92.8%

Django `Trunc()` and `Extract()` database functions vulnerable to SQL Injection

發布日:2022/7/5修改日:2025/4/3
也稱為:GHSA-p64x-8rxx-wf6qBIT-django-2022-34265PYSEC-2022-213

描述

An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe list are unaffected.

受影響套件(4)

CVSS 分數

來源版本嚴重程度向量
osvCVSS 4.0CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
osvCVSS 3.1CRITICAL9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

參考連結(22)