CVE-2024-36039
May 21, 2024, 4:53 p.m.
Tags
Product(s) Impacted
PyMySQL
- up to 1.1.0
Description
PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict.
Weaknesses
Date
Published: May 21, 2024, 4:15 p.m.
Last Modified: May 21, 2024, 4:53 p.m.
Status : Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
More infoSource
cve@mitre.org
References
https://github.com/
cve@mitre.org