mysql-connector-python@9.0.0 vulnerabilities
A self-contained Python driver for communicating with MySQL servers, using an API that is compliant with the Python Database API Specification v2.0 (PEP 249).
latest version
9.3.0
latest non vulnerable version
first published
7 years ago
latest version published
4 days ago
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the mysql-connector-python package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
mysql-connector-python is a MySQL driver written in Python which does not depend on MySQL C client libraries and implements the DB API v2.0 specification (PEP-249). Affected versions of this package are vulnerable to Arbitrary File Read when executing How to fix Arbitrary File Read? Upgrade | [,9.3.0) |
mysql-connector-python is a MySQL driver written in Python which does not depend on MySQL C client libraries and implements the DB API v2.0 specification (PEP-249). Affected versions of this package are vulnerable to Access Control Bypass via multiple protocols. An attacker can take over the MySQL Connectors by exploiting network access with low privileges. How to fix Access Control Bypass? Upgrade | [,9.1.0) |