Package impact
PyPI / sqlparse
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-30608 | high | — | 8.0 | 3y ago | sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service). This i… | |||
| CVE-2021-32839 | medium | — | 5.5 | 5y ago | sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may c… | |||
| CVE-2024-4340 | unknown | — | — | 2y ago | Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError. |