Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-004298
sonatype-2025-004298
PyMySQL - External Control of File Name or Path
Published Oct 27, 2025
https://github.com/PyMySQL/PyMySQL/compare/v0.7.9...v0.7.10#diff-ecec88c33adb7591ee6aa88e29b62ad52ef443611cba5e0f0ecac9b5725afdbaR7
CVSS Score
High
8.7
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
pypi
PyMySQL
0.6.4.dev1
pypi
PyMySQL
0.6.4
pypi
PyMySQL
0.6.6
pypi
PyMySQL
0.6.7
pypi
PyMySQL
0.7.0
pypi
PyMySQL
0.7.1
pypi
PyMySQL
0.7.2
pypi
PyMySQL
0.7.3
pypi
PyMySQL
0.7.4
pypi
PyMySQL
0.7.5
pypi
PyMySQL
0.7.6
pypi
PyMySQL
0.7.7
pypi
PyMySQL
0.7.8
pypi
PyMySQL
0.7.9
pypi
cup
2.0.2
pypi
cup
2.0.3
pypi
cup
2.2.0
pypi
cup
3.1.0
pypi
cup
3.2.0
pypi
cup
3.2.3
pypi
pymysql
0.6.4.dev1
pypi
pymysql
0.6.4
pypi
pymysql
0.6.6
pypi
pymysql
0.6.7
pypi
pymysql
0.7.0
pypi
pymysql
0.7.1
pypi
pymysql
0.7.2
pypi
pymysql
0.7.3
pypi
pymysql
0.7.4
pypi
pymysql
0.7.5
pypi
pymysql
0.7.6
pypi
pymysql
0.7.7
pypi
pymysql
0.7.8
pypi
pymysql
0.7.9
rpm
rh-python35-python-PyMySQL
0.7.5-1.el6
rpm
rh-python35-python-PyMySQL
0.7.5-1.el7
pypi
web2py-gluon
2.26.1
1-37 of 37
sonatype-2025-004298 | Components Impacted | Sonatype Guide | Sonatype Guide
