mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 09:41:05 +00:00
711 B
711 B
CVE-2024-4340
Description
Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.
POC
Reference
- https://github.com/advisories/GHSA-2m57-hf25-phgg
- https://research.jfrog.com/vulnerabilities/sqlparse-stack-exhaustion-dos-jfsa-2024-001031292/