mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-10-09 06:49:12 +00:00
Code Issues 32 Releases Wiki Activity
django/tests/queries
History
Mariusz Felisiak 01d2d770e2 [5.1.x] Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggregate(), and extra() against SQL injection in column aliases on MySQL/MariaDB. 
Thanks sw0rd1ight for the report.

Follow up to 93cae5cb2f9a4ef1514cf1a41f714fef08005200.

Backport of 41b43c74bda19753c757036673ea9db74acf494a from main.
2025-10-01 08:53:17 -04:00
..
__init__.py
Merged regressiontests and modeltests into the test root.
2013-02-26 14:36:57 +01:00
models.py
Applied Black's 2024 stable style.
2024-01-26 12:45:07 +01:00
test_bulk_update.py
Made QuerySet.bulk_update() raise an error when batch_size is zero.
2022-06-13 06:25:25 +02:00
test_contains.py
Refs #33476 -- Reformatted code with Black.
2022-02-07 20:37:05 +01:00
test_db_returning.py
Refs #33476 -- Reformatted code with Black.
2022-02-07 20:37:05 +01:00
test_explain.py
Fixed #35294 -- Fixed TEXT format of QuerySet.explain() for long plans.
2024-03-15 06:58:14 +01:00
test_iterator.py
Refs #33476 -- Reformatted code with Black.
2022-02-07 20:37:05 +01:00
test_q.py
Refs #34007, Refs #35359 -- Added Q.referenced_based_fields property.
2024-05-02 19:05:13 +02:00
test_qs_combinators.py
Refs #34013 -- Registered instance lookups as documented in tests.
2023-12-16 20:05:36 +01:00
test_query.py
Refs #33308 -- Avoided passing None to RawSQL's params.
2022-12-02 10:56:09 +01:00
test_sqlcompiler.py
Refs #33476 -- Reformatted code with Black.
2022-02-07 20:37:05 +01:00
tests.py
[5.1.x] Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggregate(), and extra() against SQL injection in column aliases on MySQL/MariaDB.
2025-10-01 08:53:17 -04:00