CVE-2019-15562

** DISPUTED ** GORM before 1.9.10 allows SQL injection via incomplete parentheses. NOTE: Misusing Gorm by passing untrusted user input where Gorm expects trusted SQL fragments is a vulnerability in the application, not in Gorm.
Configurations

Configuration 1

cpe:2.3:a:gorm:gorm:*:*:*:*:*:*:*:*

Information

Published : 2019-08-26 01:15

Updated : 2021-03-30 02:15


NVD link : CVE-2019-15562

Mitre link : CVE-2019-15562

Products Affected
No products.
CWE