SQL Injection in untitled-model

2020-09-11T21:24:33
ID GHSA-HQ8G-QQ57-5275
Type github
Reporter GitHub Advisory Database
Modified 2020-09-11T21:24:33

Description

All versions of untitled-model re vulnerable to SQL Injection. Query parameters are not properly sanitized allowing attackers to inject SQL statements and execute arbitrary SQL queries.

Recommendation

No fix is currently available. Consider using an alternative package until a fix is made available.