VYPR

npm package

pg-promise

pkg:npm/pg-promise

Vulnerabilities (1)

  • CVE-2025-29744MedJun 12, 2025
    affected < 11.5.5fixed 11.5.5

    pg-promise before 11.5.5 is vulnerable to SQL Injection due to improper handling of negative numbers.