7.9 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
50.9%
Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of a SQL query.
github.com/knex/knex/issues/1227
nvd.nist.gov/vuln/detail/CVE-2016-20018
www.ghostccamm.com/blog/knex_sqli/