search

Morea-IFS / morea-ds-web

Morea Desenvolvimento Sustentavel
https://morea-ifs.org
Creative Commons Zero v1.0 Universal
1 stars 1 forks source link

PyMySQL SQL Injection vulnerability #37

Closed Vineees closed 1 month ago

Vineees commented 1 month ago

PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict.

Vineees commented 1 month ago

Solved