Lucene search
+L

GHSA-58V4-QWX5-7F59 SQL Injection in knex

🗓️ 21 Oct 2019 16:12:13Reported by GoogleType 
osv
 osv
🔗 osv.dev👁 3 Views

Knex versions before 0.19.5 are vulnerable to injection via Microsoft SQL Server dialect identifier escaping.

Related
Refs
ReporterTitlePublishedViews
Family
CVE
CVE-2019-10757
8 Oct 201919:04
cve
Cvelist
CVE-2019-10757
8 Oct 201919:04
cvelist
EUVD
EUVD-2019-0687
7 Oct 202500:30
euvd
Github Security Blog
SQL Injection in knex
21 Oct 201916:12
github
NVD
CVE-2019-10757
8 Oct 201920:15
nvd
Prion
Sql injection
8 Oct 201920:15
prion
RedhatCVE
CVE-2019-10757
22 May 202504:20
redhatcve
Snyk
SQL Injection
7 Oct 201912:51
snyk
Veracode
SQL Injection
9 Oct 201902:56
veracode
vulnersOsv
63pokupki-nodejs-common (=0.0.2), @63pokupki/nodejs-common (>=0.0.2 <=0.0.85) +1209 more potentially affected by CVE-2019-10757 via knex (>=0.10.0 <=0.19.4)
7 Oct 201912:51
vulnersosv
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Mar 2026 22:10Current
6Medium risk
Vulners AI Score6
CVSS 3.19.8
EPSS0.01159
3