Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:39313
HistoryFeb 17, 2023 - 6:27 a.m.

SQL Injection

2023-02-1706:27:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
59
sql injection
sequelize
vulnerability
improper attribute filtering
target system
attack statement

0.002 Low

EPSS

Percentile

51.6%

sequelize is vulnerable to SQL Injection attacks. A specifically crafted attack statement through query-generator.js allows a malicious user to inject and execute arbitrary SQL queries on the target system due to improper attribute filtering.

0.002 Low

EPSS

Percentile

51.6%

Related for VERACODE:39313