Lucene search
PRIOn knowledge basePRION:CVE-2018-3754HistoryJul 03, 2018 - 9:29 p.m.
Sql injection
2018-07-0321:29:00
PRIOn knowledge base
www.prio-n.com
1
Node.js third-party module query-mysql versions 0.0.0, 0.0.1, and 0.0.2 are vulnerable to an SQL injection vulnerability due to lack of user input sanitization. This may allow an attacker to run arbitrary SQL queries when fetching data from database.
| CPE | Name | Operator | Version |
|---|---|---|---|
| query-mysql | eq | 0.0.0 | |
| query-mysql | eq | 0.0.1 | |
| query-mysql | eq | 0.0.2 |
References
Related
hackerone
hackerone
osv
osv
SQL Injection in query-mysql
2018-09-10 15:20:30
nodejs
nodejs
SQL Injection
2018-05-16 19:54:52
veracode
veracode
SQL Injection
2018-05-15 07:59:31
nvd
nvd
CVE-2018-3754
2018-07-03 21:29:00
github
github
SQL Injection in query-mysql
2018-09-10 15:20:30
cve
cve
CVE-2018-3754
2018-07-03 21:29:00
cvelist
cvelist
CVE-2018-3754
2018-05-24 00:00:00