diff --git a/requirements/prod_django32.txt b/requirements/prod_django32.txt
index 990d9daeb18b..5e72d90504d5 100644
--- a/requirements/prod_django32.txt
+++ b/requirements/prod_django32.txt
@@ -1,8 +1,9 @@
 -r prod.txt
 
-Django==3.2.4 \
+Django==4.2.27 \
     --hash=sha256:66c9d8db8cc6fe938a28b7887c1596e42d522e27618562517cc8929eb7e7f296 \
     --hash=sha256:ea735cbbbb3b2fba6d4da4784a0043d84c67c92f1fdf15ad6db69900e792c10f
 asgiref==3.3.4 \
     --hash=sha256:92906c611ce6c967347bbfea733f13d6313901d54dcca88195eaeb52b2a8e8ee \
     --hash=sha256:d1216dfbdfb63826470995d31caed36225dcaf34f182e0fa257a4dd9e86f1b78
+sqlparse>=0.5.4 # not directly required, pinned by Snyk to avoid a vulnerability