Lucene search
Tortoise-orm Security Vulnerabilities
cve
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their...
8.8CVSS
9.1AI Score
0.001EPSS
2020-04-20 10:15 PM
47