CVE-2015-9244
N/A
N/A
Summary
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with mysql.escape() which could lead to SQL Injection.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HackerOne | mysql node module | <=v2.0.0-alpha7 | affected |
Weaknesses
- CWE-89: SQL Injection (CWE-89)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.