Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possible to break escaping and inject malicious SQL.
The information has been provided by Vendor
The original article can be found at https://security.netapp.com/advisory/ntap-20200327-0004/
- Django versions 1.11 before 1.11.29,
- Django 2.2 before 2.2.11,
- Django 3.0 before 3.0.4
Published Date: 03/06/2020