Workflow

PyPi: Aba-Cli-Scrapper

CVE-2024-36039

Transitive

Safety vulnerability ID: 72564

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at May 21, 2024 Updated at Sep 20, 2024
Scan your Python projects for vulnerabilities →

Advisory

Aba-cli-scrapper 0.3.0 replaces its dependency 'pymysql' as a DBAPIS with 'mysqlclient' to avoid a SQLi vulnerability.

Affected package

aba-cli-scrapper

Latest version: 0.7.5

Create your own Alibaba dataset and interact with it in plain English.

Affected versions

Fixed versions

Vulnerability changelog

Breaking

* build(aba_cli_scrapper\*): change database api engine from myqlclient to pymysql + fixing errors while parsing html process

going through all scripts tags inside div[class=&39;container&39;] and looking for the right tag
switching between to case while parsing suppliers and products

BREAKING CHANGE: database api engine has changed from myqlclient to pymysql ([`d19ed75`](https://github.com/poneoneo/Alibaba-Scrapper/commit/d19ed75a3c92a1c0488458b40130533e59206320))

* chore(DBAPIS): remove pymysql as a DBAPIS cause of sql injections vulnearability. replacing with mysqlclient

BREAKING CHANGE: remove pymysql as a DBAPIS cause of sql injections vulnearability. replacing with mysqlclient ([`810a653`](https://github.com/poneoneo/Alibaba-Scrapper/commit/810a65388ac6cd3a10ae5abb7f85a7d13cb5854e))

Build

* build(pyproject.toml, poetry.lock): update poetry lock file to include modifications due python required versions: ^3.11 ([`21ea4b4`](https://github.com/poneoneo/Alibaba-Scrapper/commit/21ea4b424b3bb0d43589cf603577c5d604120f03))

* build(pyproject): update package project file with info about latest testing version ([`ff2f02f`](https://github.com/poneoneo/Alibaba-Scrapper/commit/ff2f02fecbefd1c03c70e53ec46eb36bf680edd5))

Chore

* chore(*): Merge branch &39;release/0.3.0&39; ([`854bd82`](https://github.com/poneoneo/Alibaba-Scrapper/commit/854bd82c863eb30bae4298ffb38a147a598f9b12))

* chore(pyproject): bumping version to 0.3.0 ([`5fbbb9f`](https://github.com/poneoneo/Alibaba-Scrapper/commit/5fbbb9fa0f21b43c4c52476aa98559846359e20e))

* chore(package_structure): update requirements for test project ([`abaa932`](https://github.com/poneoneo/Alibaba-Scrapper/commit/abaa932c83084761b309b5cd3987f36d1a7ea6f7))

* chore(project_config): bump version to 0.2.0 ([`75f6c3d`](https://github.com/poneoneo/Alibaba-Scrapper/commit/75f6c3d9526ddc40eb776f725fc08cf9548c4506))

* chore(project_config): last settings for semantic version ([`9227b30`](https://github.com/poneoneo/Alibaba-Scrapper/commit/9227b3071e9d32313bfcac681734a7e5dbc02a04))

* chore(dependencies): add dev as default branch ([`da585c8`](https://github.com/poneoneo/Alibaba-Scrapper/commit/da585c8ebfdefd25201d9681e5bfc85f76177426))

* chore(semantic_config): add dev as default branch for semantic version sys ([`302672e`](https://github.com/poneoneo/Alibaba-Scrapper/commit/302672e189a86da3d4c64046285a65cdf813875a))

* chore(semantic_config): add semantic verions system ([`3456bc8`](https://github.com/poneoneo/Alibaba-Scrapper/commit/3456bc86717740988daf4130c95041065d4b05f8))

* chore(dependencies): remove and reinstall mysqlclient ([`ca0c5d3`](https://github.com/poneoneo/Alibaba-Scrapper/commit/ca0c5d3e3ff80a8a7c9a4c908db79902a86a77a4))

* chore(package_structure): track *.html file ([`085c95c`](https://github.com/poneoneo/Alibaba-Scrapper/commit/085c95c102a8e4766a43f8ed90d0e723ae9e6d56))

* chore(package_structure): add htmlfile that will be used for test ([`c70899c`](https://github.com/poneoneo/Alibaba-Scrapper/commit/c70899cc26311907b83228a33e7b73cb934610b0))

* chore(package_structure): prepare html file to be tested ([`2bb6a33`](https://github.com/poneoneo/Alibaba-Scrapper/commit/2bb6a33e40a1152671fa584c0510f3abd4b101d9))

* chore(package_structure): remove requirements.txt ([`729e2d0`](https://github.com/poneoneo/Alibaba-Scrapper/commit/729e2d0afe9ecebbebd6e8cea7a2bfb703218d2b))

* chore(pyproject): add package file config ([`7c285c9`](https://github.com/poneoneo/Alibaba-Scrapper/commit/7c285c9cd5ee9862c8afb26db3a3d7844baf5667))

* chore(*): design whole project as a python package ([`7e947fb`](https://github.com/poneoneo/Alibaba-Scrapper/commit/7e947fbffeeb2868ea9f9c60da1e5a5e523315b0))

* chore(src): remane main.py to app.py ([`342dee2`](https://github.com/poneoneo/Alibaba-Scrapper/commit/342dee2ebd6d1817cd3f9014f90c3e92c964b5c0))

* chore(requirements): update requirements and depedencies ([`488d0f5`](https://github.com/poneoneo/Alibaba-Scrapper/commit/488d0f5127dbf3591db196368e7a48bff58960da))

* chore(pipfile.lock .gitignore): track pipfile.lock file to ensure crossplateforme running as recommended by Kenneth Reitz ([`48513cb`](https://github.com/poneoneo/Alibaba-Scrapper/commit/48513cbbc368f0bbfe8aea2e0b8ddfb099b15c7b))

* chore(licence): add GNU General Public License v3.0 ([`26dacbb`](https://github.com/poneoneo/Alibaba-Scrapper/commit/26dacbbde83b6335fd8e55ecf790dcf741cd3213))

* chore(dependencies and packages): update requirements.txt file with new packages and depencies ([`d2eece8`](https://github.com/poneoneo/Alibaba-Scrapper/commit/d2eece86b47fcaea16306a696d313cc238376f4b))

* chore(dependencies): replace pony by sqlmodel ([`7ea52dd`](https://github.com/poneoneo/Alibaba-Scrapper/commit/7ea52ddb462c20886953cc95d7a9d210ff05d4c0))

* chore(models.py): map dataclasses to create an Mysql database ([`ad32cc6`](https://github.com/poneoneo/Alibaba-Scrapper/commit/ad32cc6db9dc73dc0a40f002763f9aa8bdda5381))

* chore: remove all htmlfiles in tests packages ([`9c7c45c`](https://github.com/poneoneo/Alibaba-Scrapper/commit/9c7c45c6cd15c79fa965931bdbc2ecd176593ada))

* chore(commits): Merge tag &39;v0.2.0&39; into dev

Resources

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application