CVE-2025-59681 HIGH

CVE-2025-59681

Vendor Djangoproject
Product Django
Weakness CWE-89 · SQLi
Published October 1, 2025
Last update November 4, 2025
View on NVD All CVEs

CVSS base score

7.1/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

What the vulnerability does

01Description

An issue was discovered in Django 4.2 before 4.2.25, 5.1 before 5.1.13, and 5.2 before 5.2.7. QuerySet.annotate(), QuerySet.alias(), QuerySet.aggregate(), and QuerySet.extra() are subject to SQL injection in column aliases, when using a suitably crafted dictionary, with dictionary expansion, as the **kwargs passed to these methods (on MySQL and MariaDB).

Key dates

02Disclosure timeline

October 1, 2025 CVE published
November 4, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2023-5429 Information Reel <= 10.0 - Authenticated (Subscriber+) SQL Injection via Shortcode CVE-2025-14169 FunnelKit – Funnel Builder for WooCommerce Checkout <= 3.13.1.5 - Unauthenticated SQL Injection CVE-2026-22336 WordPress Directorist Booking plugin < 3.0.2 - SQL Injection vulnerability CVE-2018-25401 The Open ISES Project 3.30A SQL Injection via sever_graph.php CVE-2023-4844 SourceCodester Simple Membership System club_edit_query.php sql injection