Tortoise Orm
1 CVEs
product
Monthly
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.
SQLi
PostgreSQL
Tortoise Orm
NVD
GitHub
CVSS 3.1
8.8
EPSS
1.0%
CVE-2020-11010
PyPI
EPSS 1%
CVSS 8.8
HIGH
PATCH
This Week
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.
SQLi
PostgreSQL
Tortoise Orm
NVD
GitHub