Security Advisory

CVE-2019-10748

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-28 21:42:45

Last updated 2024-08-04 22:32:01

Assigner snyk

State PUBLISHED

Description

Sequelize all versions prior to 3.35.1, 4.44.3, and 5.8.11 are vulnerable to SQL Injection due to JSON path keys not being properly escaped for the MySQL/MariaDB dialects.

← Browse all CVEs View on cve.org ↗