The possible SQL Injection vulnerability, identified as CVE-2022-34265, is present in Django’s main branch as well as versions 4.1 (now in beta), 4.0, and 3.2. Today’s updates and patches eliminate the vulnerability.
According to some estimates, tens of thousands of websites, including several well-known businesses, choose Django as their Model-Template-View framework. This is why it’s essential to update or patch your Django instances to protect them against problems like this. Read More…