Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/sqlalchemy@0.7.0b4
Typepypi
Namespace
Namesqlalchemy
Version0.7.0b4
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version0.7.0b4
Latest_non_vulnerable_version1.3.0b3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-3q38-re5x-rbaj
vulnerability_id VCID-3q38-re5x-rbaj
summary Multiple SQL injection vulnerabilities in SQLAlchemy before 0.7.0b4, as used in Keystone, allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset keyword to the select function, or unspecified vectors to the (3) select.limit or (4) select.offset function.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2012-0369.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-0369.html
1
reference_url https://bugs.launchpad.net/keystone/+bug/918608
reference_id
reference_type
scores
url https://bugs.launchpad.net/keystone/+bug/918608
2
reference_url http://secunia.com/advisories/48327
reference_id
reference_type
scores
url http://secunia.com/advisories/48327
3
reference_url http://secunia.com/advisories/48328
reference_id
reference_type
scores
url http://secunia.com/advisories/48328
4
reference_url http://secunia.com/advisories/48771
reference_id
reference_type
scores
url http://secunia.com/advisories/48771
5
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/73756
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/73756
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/sqlalchemy/PYSEC-2012-9.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/sqlalchemy/PYSEC-2012-9.yaml
7
reference_url https://github.com/sqlalchemy/sqlalchemy
reference_id
reference_type
scores
url https://github.com/sqlalchemy/sqlalchemy
8
reference_url https://github.com/sqlalchemy/sqlalchemy/commit/51fea2e159ca93daa0bc8066a5c35d8436d99418
reference_id
reference_type
scores
url https://github.com/sqlalchemy/sqlalchemy/commit/51fea2e159ca93daa0bc8066a5c35d8436d99418
9
reference_url https://web.archive.org/web/20140721183117/http://secunia.com/advisories/48771
reference_id
reference_type
scores
url https://web.archive.org/web/20140721183117/http://secunia.com/advisories/48771
10
reference_url https://web.archive.org/web/20140802043526/http://secunia.com/advisories/48328
reference_id
reference_type
scores
url https://web.archive.org/web/20140802043526/http://secunia.com/advisories/48328
11
reference_url https://web.archive.org/web/20140802044957/http://secunia.com/advisories/48327
reference_id
reference_type
scores
url https://web.archive.org/web/20140802044957/http://secunia.com/advisories/48327
12
reference_url http://www.debian.org/security/2012/dsa-2449
reference_id
reference_type
scores
url http://www.debian.org/security/2012/dsa-2449
13
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2012:059
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2012:059
14
reference_url http://www.sqlalchemy.org/changelog/CHANGES_0_7_0
reference_id
reference_type
scores
url http://www.sqlalchemy.org/changelog/CHANGES_0_7_0
15
reference_url http://www.sqlalchemy.org/trac/changeset/852b6a1a87e7/
reference_id
reference_type
scores
url http://www.sqlalchemy.org/trac/changeset/852b6a1a87e7/
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-0805
reference_id CVE-2012-0805
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2012-0805
17
reference_url https://github.com/advisories/GHSA-hfg2-wf6j-x53p
reference_id GHSA-hfg2-wf6j-x53p
reference_type
scores
url https://github.com/advisories/GHSA-hfg2-wf6j-x53p
fixed_packages
0
url pkg:pypi/sqlalchemy@0.7.0b4
purl pkg:pypi/sqlalchemy@0.7.0b4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/sqlalchemy@0.7.0b4
1
url pkg:pypi/sqlalchemy@0.7.0
purl pkg:pypi/sqlalchemy@0.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kbkh-bf1z-3kb4
1
vulnerability VCID-tt22-7cuc-gkfc
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/sqlalchemy@0.7.0
aliases CVE-2012-0805, GHSA-hfg2-wf6j-x53p, PYSEC-2012-9
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3q38-re5x-rbaj
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/sqlalchemy@0.7.0b4