2024-12-02 00:00:00
mitre
PUBLISHED
Mongoose before 8.8.3 can improperly use $where in match, leading to search injection.