Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Tortoise Orm Project Subscribe
Filtered by product Tortoise Orm
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-11010 1 Tortoise Orm Project 1 Tortoise Orm 2020-04-28 6.5 MEDIUM 8.8 HIGH
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their case-insensitive counterparts).