npm package
connect-pg-simple
pkg:npm/connect-pg-simple
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-15658 | Hig | 7.3 | < 6.0.1 | 6.0.1 | Aug 26, 2019 | connect-pg-simple before 6.0.1 allows SQL injection if tableName or schemaName is untrusted data. |
- affected < 6.0.1fixed 6.0.1
connect-pg-simple before 6.0.1 allows SQL injection if tableName or schemaName is untrusted data.