6 matches found
EUVD-2019-0687
Malware in sbrugna...
CVE-2019-10757
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing attackers to craft a malicious query to the host DB...
CVE-2019-10757
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing attackers to craft a malicious query to the host DB...
Sql injection
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing attackers to craft a malicious query to the host DB...
CVE-2019-10757
CVE-2019-10757 affects knex.js versions before 0.19.5. The root cause is that identifiers are escaped incorrectly in the MSSQL dialect, enabling an attacker to craft a malicious query to the host database (SQL Injection). Impact is described as vulnerable to SQL injection; mitigation provided in ...
CVE-2019-10757
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing attackers to craft a malicious query to the host DB...