Skip to main content

Ormar

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-26198 PyPI CRITICAL POC PATCH Act Now

SQL injection in Ormar async ORM for Python versions 0.9.9 through 0.22.0. Aggregate queries pass unsanitized input to SQL, enabling database compromise through the ORM abstraction. PoC and patch available.

Python Ormar
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-26198 PyPI
EPSS 0% CVSS 9.8
CRITICAL POC PATCH Act Now

SQL injection in Ormar async ORM for Python versions 0.9.9 through 0.22.0. Aggregate queries pass unsanitized input to SQL, enabling database compromise through the ORM abstraction. PoC and patch available.

Python Ormar
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy