60
Affected versions of the package are vulnerable to a potential SQL Injection. Malicious strings can be injected when utilizing dictionary-based query parameterization via the 'cursor.execute()' API command and the C-based implementation of the connector.
You're affected if you are using a version which is within vulnerability ranges.
Upgrade mysql-connector-python library to patch version.