CVE-2020-7471 log

Source
Severity Medium
Remote Yes
Type Sql injection
Description
django.contrib.postgres.aggregates.StringAgg aggregation function was subject to SQL injection, using a suitably crafted delimiter.
Group Package Affected Fixed Severity Status Ticket
AVG-1091 python-django 3.0.2-1 3.0.3-1 Medium Fixed
Date Advisory Group Package Severity Description
03 Feb 2020 ASA-202002-1 AVG-1091 python-django Medium sql injection
References
https://www.djangoproject.com/weblog/2020/feb/03/security-releases/