CVE-2015-1369

Summary: CVE-2015-1369 is a SQL injection in Sequelize for Node.js, affecting versions up to and including 2.0.0-rc7 where user input placed in the order parameter can lead to arbitrary SQL execution. The issue is caused by unsafe handling of the order input, enabling attackers to influence queri...