RSS   Vulnerabilities for 'Mysql node module'   RSS

2018-05-29
 
CVE-2015-9244

CWE-89
 

 
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.

 


Copyright 2018, cxsecurity.com

 

Back to Top