Vulnerability in SQLite DBMS
A vulnerability (CVE-2019-5018) has been identified in the SQLite DBMS, which allows you to execute your code in the system if it is possible to execute an SQL query prepared by an attacker. The problem is caused by an error in the implementation of window functions and appears since the SQLite 3.26 branch. The vulnerability was addressed in the April release of SQLite 3.28, with no explicit mention of a security fix. A specially crafted SQL SELECT query can result in [...]