A potential SQL injection has been found in Django before 3.0.4, via tolerance parameter in GIS functions and aggregates on Oracle.
A potential SQL injection has been found in Django before 3.0.4, via tolerance parameter in GIS functions and aggregates on Oracle.
https://www.djangoproject.com/weblog/2020/mar/04/security-releases/ https://github.com/django/django/commit/26a5cf834526e291db00385dd33d319b8271fc4c