Affected versions of waterline-sequel
are vulnerable to SQL injection in cases where user input is passed into the like
, contains
, startsWith
, or endsWith
methods.
Upgrade to at least version 0.5.1
CPE | Name | Operator | Version |
---|---|---|---|
waterline-sequel | lt | 0.5.1 |