| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33468 | Kysely has a MySQL SQL Injection via Insufficient Backslash Escaping in `sql.lit(string)` usage or similar methods that append string literal values into the compiled SQL strings | kysely-org | kysely | High | 8.1 | 2026-03-26 17:03:06 | Deep Dive |
| CVE-2026-33442 | Kysely has a MySQL SQL Injection via Backslash Escape Bypass in non-type-safe usage of JSON path keys. | kysely-org | kysely | High | 8.1 | 2026-03-26 17:01:58 | Deep Dive |
| CVE-2026-32763 | SQL Injection via unsanitized JSON path keys when ignoring/silencing compilation errors or using `Kysely<any>`. | kysely-org | kysely | High | 8.2 | 2026-03-19 23:14:59 | Deep Dive |