Headline
CVE-2019-7548: GitHub - no-security/sqlalchemy_test
SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled.
Related news
CVE-2021-41947: SQL injection in visual mode · Issue #887 · intelliants/subrion
A SQL injection vulnerability exists in Subrion CMS v4.2.1 in the visual-mode.