Vulnerability/
REDHAT-BUG-2436342

REDHAT-BUG-2436342: SQL Injection

Q: What is the severity of REDHAT-BUG-2436342?

The severity of REDHAT-BUG-2436342 is critical due to the potential for SQL injection.

Q: How do I fix REDHAT-BUG-2436342?

To fix REDHAT-BUG-2436342, upgrade to Django versions 6.0.2, 5.2.11, or 4.2.28 or later.

Q: What versions of Django are affected by REDHAT-BUG-2436342?

Django versions prior to 6.0.2, 5.2.11, and 4.2.28 are affected by REDHAT-BUG-2436342.

Q: What kind of vulnerability is REDHAT-BUG-2436342?

REDHAT-BUG-2436342 is a SQL injection vulnerability caused by improper handling of column aliases.

Q: Can REDHAT-BUG-2436342 be exploited remotely?

Yes, REDHAT-BUG-2436342 can be exploited remotely if the vulnerable versions are exposed to untrusted input.

Published Feb 3, 2026

Updated

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. `.QuerySet.order_by()` is subject to SQL injection in column aliases containing periods when the same alias is, using a suitably crafted dictionary, with dictionary expansion, used in `FilteredRelation`. Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected. Django would like to thank Solomon Kebede for reporting this issue.

Affected Software

3 affected components

Django Django<6.0.2

Django Django<5.2.11

Django Django<4.2.28

Event History

Feb 3, 2026

Data Sourced

via Red Hat·03:01 PM

DescriptionSeverityAffected Software

Frequently Asked Questions

What is the severity of REDHAT-BUG-2436342?

The severity of REDHAT-BUG-2436342 is critical due to the potential for SQL injection.

How do I fix REDHAT-BUG-2436342?

To fix REDHAT-BUG-2436342, upgrade to Django versions 6.0.2, 5.2.11, or 4.2.28 or later.

What versions of Django are affected by REDHAT-BUG-2436342?

Django versions prior to 6.0.2, 5.2.11, and 4.2.28 are affected by REDHAT-BUG-2436342.

What kind of vulnerability is REDHAT-BUG-2436342?

REDHAT-BUG-2436342 is a SQL injection vulnerability caused by improper handling of column aliases.

Can REDHAT-BUG-2436342 be exploited remotely?

Yes, REDHAT-BUG-2436342 can be exploited remotely if the vulnerable versions are exposed to untrusted input.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

REDHAT-BUG-2436342 - SQL Injection - SecAlerts