Vulners
Lucene search
Code Injection
🗓️ 17 Dec 2024 10:44:11Reported by Veracode Vulnerability DatabaseType 
veracode🔗 sca.analysiscenter.veracode.com👁 13 Views
| Reporter | Title | Published | Views | Family All 29 |
|---|---|---|---|---|
 | Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in Mongoose | 15 Apr 202503:57 | – | ibm |
| Security Bulletin: Mongoose before 8.8.3 can improperly use $where in match, leading to search injection. | 17 Apr 202503:08 | – | ibm |
 | Exploit for CVE-2024-53900 | 3 Apr 202517:01 | – | githubexploit |
| Exploit for CVE-2024-53900 | 19 Aug 202510:20 | – | githubexploit |
| Exploit for Code Injection in Mongoosejs Mongoose | 11 Dec 202507:50 | – | githubexploit |
 | The vulnerability of the Mongoose library, related to the lack of protection for SQL query structures, allows attackers to execute arbitrary code and gain access to read and modify data. | 24 Feb 202500:00 | – | bdu_fstec |
 | CVE-2024-53900 | 2 Dec 202422:06 | – | circl |
 | Automattic Mongoose 安全漏洞 | 2 Dec 202400:00 | – | cnnvd |
 | CVE-2024-53900 | 2 Dec 202400:00 | – | cve |
 | CVE-2024-53900 | 2 Dec 202400:00 | – | cvelist |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Dec 2024 11:42Current
7.3High risk
Vulners AI Score7.3
CVSS 3.19.1
EPSS0.03911
SSVC