diff --git a/CHANGELOG.md b/CHANGELOG.md
index dbd6b6da8..ee7cd08ae 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -27,4 +27,5 @@ If your change does not need a CHANGELOG entry, add the "skip changelog" label t
   ([#524](https://github.com/aws-observability/aws-otel-python-instrumentation/pull/524))
 - Support credentials provider name for BedrockAgentCore Identity
   ([#534](https://github.com/aws-observability/aws-otel-python-instrumentation/pull/534))
-
+- Upgrade Django to version 5.1.14 to address the SQL injection vulnerability CVE-2025-64459
+  ([#539](https://github.com/aws-observability/aws-otel-python-instrumentation/pull/539))
diff --git a/contract-tests/images/applications/django/requirements.txt b/contract-tests/images/applications/django/requirements.txt
index cbfc3a83e..a8ff28ca1 100644
--- a/contract-tests/images/applications/django/requirements.txt
+++ b/contract-tests/images/applications/django/requirements.txt
@@ -1,2 +1,2 @@
 typing-extensions==4.15.0
-django==5.0.11
+django==5.1.14