Django security release: Potential SQL injection | Not Hacker News!