Product Research Enterprise Plans Docs

PyPi: Mysql-Connector-Python

PVE-2024-73722

Safety vulnerability ID: 73722

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Oct 15, 2024 Updated at Oct 16, 2024

Advisory

Affected versions of the mysql-connector-python are vulnerable to SQL Injection due to im…

[This advisory has been limited. Please create a free account to view the full advisory.]

Affected package

mysql-connector-python

Latest version: 9.1.0

A self-contained Python driver for communicating with MySQL servers, using an API that is compliant with the Python Database API Specification v2.0 (PEP 249).

Affected versions

Fixed versions

Vulnerability changelog

======= - WL11668: Add SHA256_MEMORY authentication mechanism - WL11614: Enable C ext…

[This text has been limited. Please create a free account to view the full text.]

Resources

https://github.com/mysql/mysql-connector-python/commit/6fd014855f183101def255ae724fe01767fa9fe4
https://pypi.org/project/mysql-connector-python
https://data.safetycli.com/changelogs/mysql-connector-python/