CVE-2019-10748 in Sequelizeالمعلومات

الملخص

بحسب MITRE

Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

حجز

03/04/2019

الاعتدال

تمت الموافقة

إدخال

VDB-144414

EPSS

0.01315

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!