Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-10748

Disclosure Date: October 29, 2019 (last updated November 08, 2023)
Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0