PyMysqlDb

MySQLdb (mysqlclient) is a C-extension MySQL driver. Cursor.execute() is an SQL injection sink when the query is built without %s placeholders.

2 sinks

Taint flow0 sources → 2 sinks

Sinks — dangerous call

.execute()Executes a query

.executemany()Batched query execution

Sinks

— dangerous functions taint must not reach

.execute()Sink

Signature

Cursor.execute(query: str, args=None) -> int

Executes a query. SQL injection sink.

tracks:0

.executemany()Sink

Signature

Cursor.executemany(query: str, args: Sequence) -> int

Batched query execution. Same injection risk.

tracks:0

.connect()Neutral

Signature

MySQLdb.connect(host='localhost', user=None, passwd='', ...) -> Connection

Opens a MySQL connection.

FQN	Field
MySQLdb	fqns[0]
MySQLdb.cursors.Cursor	fqns[1]

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

rule.py

from codepathfinder.go_rule import PyMysqlDb