Every CVE whose affected-product data names Sqlalchemy Mako, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-40023 — CVSS 7.5 (high): Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects…
CVE-2026-41205 — CVSS 7.5 (high): Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI…