Lucene search
SnykCVELIST:CVE-2019-10748HistoryOct 28, 2019 - 9:42 p.m.
CVE-2019-10748
2019-10-2821:42:45
snyk
www.cve.org
3
Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects.
CNA Affected
[
{
"product": "Sequelize",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions prior to 3.35.1"
},
{
"status": "affected",
"version": "All versions prior to 4.44.3"
},
{
"status": "affected",
"version": "All versions prior to 5.8.11"
}
]
}
]Related
osv
osv
CVE-2019-10748
2019-10-29 19:15:00
SQL Injection in sequelize
2019-11-06 17:11:10
veracode
veracode
SQL Injection
2019-06-24 08:24:13
nvd
nvd
CVE-2019-10748
2019-10-29 19:15:16
cve
cve
CVE-2019-10748
2019-10-29 19:15:16
nodejs
nodejs
SQL Injection
2019-06-24 15:07:08
github
github
SQL Injection in sequelize
2019-11-06 17:11:10
prion
prion
Sql injection
2019-10-29 19:15:00