Описание
pg8000 SQL injection vulnerability via a specially crafted Python list input
SQL injection vulnerability in tlocke pg8000 1.31.4 allows remote attackers to execute arbitrary SQL commands via a specially crafted Python list input to function pg8000.native.literal.
Пакеты
Наименование
pg8000
pip
Затронутые версииВерсия исправления
<= 1.31.4
1.31.5
Связанные уязвимости
CVSS3: 9.6
nvd
3 месяца назад
SQL injection vulnerability in tlocke pg8000 1.31.4 allows remote attackers to execute arbitrary SQL commands via a specially crafted Python list input to function pg8000.native.literal.