Due to improper input validation in the Feathers js library, it is possible to perform a SQL injection attack on the back-end database, in case the feathers-sequelize package is used.
CPE | Name | Operator | Version |
---|---|---|---|
feathers-sequelize | ge | 6.0.0 | |
feathers-sequelize | lt | 6.3.4 |