The pygresql module 3.8.1 and 4.0 for Python does not properly support the PQescapeStringConn function, which might allow remote malicious users to leverage escaping issues involving multibyte character encodings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pygresql pygresql 3.8.1 |
||
pygresql pygresql 4.0 |