How does Django handle security issues, such as SQL injection and Cross-Site Scripting (XSS)?
Question :
How does Django handle security issues, such as SQL injection and Cross-Site Scripting (XSS)?
Django includes built-in security features to prevent common vulnerabilities. It uses parameterized queries to protect against SQL injection. For XSS protection, Django template system automatically escapes variables unless explicitly marked as safe. Additionally, Django provides middleware to set security-related HTTP headers.