Количество 2
Количество 2
CVE-2020-11010
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their case-insensitive counterparts).
GHSA-9j2c-x8qm-qmjq
SQL injection in Tortoise ORM
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11010 In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their case-insensitive counterparts). | CVSS3: 6.3 | 0% Низкий | почти 6 лет назад |
| GHSA-9j2c-x8qm-qmjq SQL injection in Tortoise ORM | CVSS3: 6.3 | 0% Низкий | почти 6 лет назад |
Уязвимостей на страницу