CVE-2020-11010

CVE-2020-11010

In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their case-insensitive counterparts).

Source: CVE-2020-11010

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다