Lucene search
Veracode Vulnerability DatabaseVERACODE:47166HistoryMay 24, 2024 - 8:27 a.m.
SQL Injection
2024-05-2408:27:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
pymysql
sql injection
vulnerability
json sanitization
arbitrary sql
untrusted input
security
PyMySQL is vulnerable to SQL Injection. The vulnerability is due to improper JSON sanitization within the escape_dict function, which allows an attacker execute arbitrary SQL if an application handles untrusted JSON user input.
Related
redhatcve
redhatcve
CVE-2024-36039
2024-05-23 19:21:13
nvd
nvd
CVE-2024-36039
2024-05-21 16:15:26
debian
debian
[SECURITY] [DLA 3822-1] python-pymysql security update
2024-05-27 10:36:52
[SECURITY] [DSA 5700-1] python-pymysql security update
2024-05-29 17:35:02
ubuntucve
ubuntucve
CVE-2024-36039
2024-05-21 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3822-1)
2024-05-28 00:00:00
Debian: Security Advisory (DSA-5700-1)
2024-05-30 00:00:00
Ubuntu: Security Advisory (USN-6801-1)
2024-05-30 00:00:00
debiancve
debiancve
CVE-2024-36039
2024-05-21 16:15:26
osv
osv
python-pymysql vulnerability
2024-05-30 11:38:31
python-pymysql - security update
2024-05-29 00:00:00
python-pymysql - security update
2024-05-27 00:00:00
github
github
PyMySQL SQL Injection vulnerability
2024-05-21 18:31:23
nessus
nessus
Debian dla-3822 : python-pymysql - security update
2024-05-29 00:00:00
Debian dsa-5700 : python-pymysql-doc - security update
2024-05-29 00:00:00
openSUSE 15 Security Update : python-PyMySQL (SUSE-SU-2024:1925-1)
2024-06-06 00:00:00
ubuntu
ubuntu
PyMySQL vulnerability
2024-05-30 00:00:00
redos
redos
ROS-20240611-04
2024-06-11 00:00:00
cvelist
cvelist
CVE-2024-36039
2024-05-21 00:00:00
wolfi
wolfi
CVE-2024-36039 vulnerabilities
2024-06-17 03:08:17
cve
cve
CVE-2024-36039
2024-05-21 16:15:26