Critical severity9.8NVD Advisory· Published May 29, 2018· Updated Jun 17, 2026
CVE-2015-9244
CVE-2015-9244
Description
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with mysql.escape() which could lead to SQL Injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mysqlnpm | < 2.0.0-alpha8 | 2.0.0-alpha8 |
Affected products
2- Range: <=v2.0.0-alpha7
Patches
Vulnerability mechanics
References
5- github.com/felixge/node-mysql/issues/342nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-fvq6-55gv-jx9fghsaADVISORY
- nodesecurity.io/advisories/66nvdThird Party Advisory
- nvd.nist.gov/vuln/detail/CVE-2015-9244ghsaADVISORY
- www.npmjs.com/advisories/66ghsaWEB
News mentions
0No linked articles in our index yet.