CVE-2024-4340 | sqlparse up to 0.4.x sqlparse.parse recursion (jfsa-2024-0010)

Inserito da Angelo Barbosa | Apr 30, 2024 | CVE

A vulnerability classified as critical has been found in sqlparse up to 0.4.x. This affects the function sqlparse.parse. The manipulation leads to uncontrolled recursion.

This vulnerability is uniquely identified as CVE-2024-4340. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4340 | sqlparse up to 0.4.x sqlparse.parse recursion (jfsa-2024-0010)

Post correlati

CVE-2024-10662 | Tenda AC15 15.03.05.19 /goform/SetOnlineDevName formSetDeviceName devName stack-based overflow

CVE-2024-1179 | TP-Link Omada ER605 DHCPv6 Client Options stack-based overflow

CVE-2024-6555 | WP Popups Plugin up to 2.2.0.1 on WordPress information disclosure

CVE-2024-1577 | Jan Syski MegaBIP code injection