CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0149

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01006EPSS

Exploits1References13

Tenable Nessus•added 2025/05/14 12:0 a.m.•6 views

Alibaba Cloud Linux 3 : 0057: python-mako (ALINUX3-SA-2023:0057)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0057 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-40023: Sqlalchemy mako before 1.2.2 is...

7.5CVSS7.5AI score0.01006EPSS

Exploits1References2

CVE•added 2024/05/29 4:35 p.m.•49 views

CVE-2024-34715

CVE-2024-34715 affects the Fides webserver, where an improper escaping of the SQLAlchemy password string can cause the database password to be partially exposed in webserver logs when the password contains characters like @ or $. This is due to insufficient escaping of the password in the connect...

3.3CVSS3.4AI score0.00099EPSS

Exploits1References4Affected Software1

vulnersOsv•added 2019/04/16 3:50 p.m.•2 views

ads-api (>=0.1.7.3 <=0.1.7.5), aequitas (>=0.26.0 <=0.34.0) +217 more potentially affected by CVE-2019-7164 via sqlalchemy (>=0.7.7 <=1.3.0b2)

sqlalchemy PYPI version =0.7.7, =0.1.7.3, =0.26.0, =0.1.0, =1.10.0, =0.10.0, =1.10.3, =0.1.6, =1.0.0a0, =1.0.0, =0.0.4, =1.0.1, =0.6.7.post3, =0.0.2, =0.0.9 and more Source cves: CVE-2019-7164 Source advisory: OSV:GHSA-887W-45RQ-VXGF...

9.8CVSS7.1AI score0.0189EPSS

Exploits2

Github Security Blog•added 2019/04/16 3:50 p.m.•54 views

SQLAlchemy is vulnerable to SQL Injection via group_by parameter

SQLAlchemy 1.2.17 has SQL Injection when the groupby parameter can be controlled...

7.8CVSS9.3AI score0.01088EPSS

Exploits1References14Affected Software1

vulnersOsv•added 2019/04/16 3:50 p.m.•1 views

aequitas (>=0.26.0 <=0.34.0), alembic-viz (=0.1.0) +152 more potentially affected by CVE-2019-7548 via sqlalchemy (>=0.7.7 <=1.2.18)

sqlalchemy PYPI version =0.7.7, =0.26.0, =1.10.0, =0.10.0, =0.1.6, =1.0.0a0, =1.0.0, =0.0.4, =1.0.1, =0.6.7.post3, =0.0.2, =0.0.2, =0.0.2, =0.0.4, =0.0.6 and more Source cves: CVE-2019-7548 Source advisory: OSV:GHSA-38FC-9XQV-7F7Q...

7.8CVSS7.1AI score0.01088EPSS

Exploits1

OSV•added 2019/02/06 9:29 p.m.•1 views

DEBIAN-CVE-2019-7548

SQLAlchemy 1.2.17 has SQL Injection when the groupby parameter can be controlled...

7.8CVSS8.2AI score0.01088EPSS

Exploits1References1

PyPA•added 2019/02/06 9:29 p.m.•5 views

PYSEC-2019-124

SQLAlchemy 1.2.17 has SQL Injection when the groupby parameter can be controlled...

7.8CVSS8.1AI score0.01088EPSS

Exploits1References10Affected Software1

RedHat Linux•added 2012/03/07 2:24 p.m.•3 views

python-sqlalchemy: SQL injection flaw due to not checking LIMIT input for correct type

Multiple SQL injection vulnerabilities in SQLAlchemy before 0.7.0b4, as used in Keystone, allow remote attackers to execute arbitrary SQL commands via the 1 limit or 2 offset keyword to the select function, or unspecified vectors to the 3 select.limit or 4 select.offset function...

7.5CVSS6.2AI score0.01649EPSS

Exploits2References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by