Vulnerabilities > Sqlalchemy

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-07	CVE-2022-40023	Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. network low complexity sqlalchemy debian	7.5
2019-02-20	CVE-2019-7164	SQL Injection vulnerability in multiple products SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter. network low complexity sqlalchemy debian opensuse redhat oracle CWE-89 critical	9.8
2019-02-06	CVE-2019-7548	SQL Injection vulnerability in multiple products SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled. local low complexity sqlalchemy debian opensuse redhat oracle CWE-89	7.8

Vulnerabilities > Sqlalchemy {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sqlalchemy"}]}