CVE-2019-7548: SQL Injection via group_by
(updated )
SQLAlchemy has SQL Injection when the group_by parameter can be controlled.
References
Detect and mitigate CVE-2019-7548 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →