npm package
@sequelize/core
pkg:npm/%40sequelize/core
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-22580 | Med | 5.3 | < 7.0.0-alpha.20 | 7.0.0-alpha.20 | Feb 16, 2023 | Due to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure. | |
| CVE-2023-22579 | Cri | 9.9 | < 7.0.0-alpha.20 | 7.0.0-alpha.20 | Feb 16, 2023 | Due to improper parameter filtering in the sequalize js library, can a attacker peform injection. | |
| CVE-2023-22578 | Cri | 10.0 | < 7.0.0-alpha.20 | 7.0.0-alpha.20 | Feb 16, 2023 | Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections. |
- affected < 7.0.0-alpha.20fixed 7.0.0-alpha.20
Due to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure.
- affected < 7.0.0-alpha.20fixed 7.0.0-alpha.20
Due to improper parameter filtering in the sequalize js library, can a attacker peform injection.
- affected < 7.0.0-alpha.20fixed 7.0.0-alpha.20
Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections.