CVE-2019-10748 in Sequelize
الملخص
بحسب MITRE
Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.