Vigil@nce - Vigil@nce - Django: SQL injection via QuerySet.annotate(), analyzed on 11/04/2022
June 2022 by Vigil@nce
Vigil@nce - An attacker can use a SQL injection of Django, via QuerySet.annotate(), in order to read or alter data.
Plus d'information sur : https://vigilance.fr/vulnerability/Django-SQL-injection-via-QuerySet-annotate-38010