a0b458582f
Fixes the following security issue: - CVE-2025-48432: Internal HTTP response logging does not escape request.path, which allows remote attackers to potentially manipulate log output via crafted URLs. This may lead to log injection or forgery when logs are viewed in terminals or processed by external systems. For more information, see: - https://nvd.nist.gov/vuln/detail/CVE-2025-48432 For more details on the version bump, see the release notes: - https://docs.djangoproject.com/en/5.1/releases/5.1.11/ Signed-off-by: Thomas Perale <thomas.perale@mind.be>