sqlite is vulnerable to security restrictions bypass. When relying on --safe
for execution of an untrusted CLI script, it does not properly implement the azProhibitedFunctions
protection mechanism, and instead allows UDF functions such as WRITEFILE
.
CPE | Name | Operator | Version |
---|---|---|---|
sqlite3:sid | eq | 3.33.0-1 | |
sqlite3:sid | eq | 3.33.0-1 |