Feather-Sequalize cleanQuery method uses insecure recursive logic to filter unsupported keys from the query object. This results in a Remote Code Execution (RCE) with privileges of application.
CPE | Name | Operator | Version |
---|---|---|---|
feathers-sequelize | ge | 6.0.0 | |
feathers-sequelize | lt | 6.3.4 |