-
Improvement
-
Resolution: Fixed
-
Normal
-
None
-
None
-
Make sqlalchemy autogened
{ "id": "CVE-2019-7164", "is_known_exploited_vuln": false, "description": "SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter.", "urls": [ "https://nvd.nist.gov/vuln/detail/CVE-2019-7164", "https://github.com/sqlalchemy/sqlalchemy/issues/4481", "https://lists.debian.org/debian-lts-announce/2019/03/msg00020.html", "https://access.redhat.com/errata/RHSA-2019:0984", "https://access.redhat.com/errata/RHSA-2019:0981", "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00087.html", "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00010.html", "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00016.html", "https://www.oracle.com/security-alerts/cpujan2021.html", "https://lists.debian.org/debian-lts-announce/2021/11/msg00005.html" ] }