Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 21/05/2024 Updated: 21/05/2024

PyMySQL up to and including 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict.

Debian Bug report logs - #1071628 python-pymysql: CVE-2024-36039 Package: src:python-pymysql; Maintainer for src:python-pymysql is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Wed, 22 May 2024 15:12:02 UTC Severity: grave Tags: security, upstream Found ...

https://github.com/PyMySQL/PyMySQL/releases/tag/v1.1.1 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1071628

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-36039

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect