EPSS
Percentile
32.8%
@nozbe/watermelondb is vulnerable to SQL injection. A remote attacker is able to inject and execute arbitrary SQL statements via the id parameter.
id
github.com/Nozbe/WatermelonDB/commit/924c7ae2a8d
github.com/Nozbe/WatermelonDB/commit/924c7ae2a8d7d6459656751e5b9b1bf91a218025
github.com/Nozbe/WatermelonDB/security/advisories/GHSA-38f9-m297-6q9g