CVE-2015-9244
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with mysql.escape() which could lead to SQL Injection.
| Software | From | Fixed in |
|---|---|---|
| mysqljs / mysql | - | 0.9.6.x |
| mysqljs / mysql | 2.0.0-alpha | 2.0.0-alpha.x |
| mysqljs / mysql | 2.0.0-alpha2 | 2.0.0-alpha2.x |
| mysqljs / mysql | 2.0.0-alpha3 | 2.0.0-alpha3.x |
| mysqljs / mysql | 2.0.0-alpha4 | 2.0.0-alpha4.x |
| mysqljs / mysql | 2.0.0-alpha7 | 2.0.0-alpha7.x |
| mysqljs / mysql | 2.0.0-preview | 2.0.0-preview.x |
mysql
|
- | 2.0.0-alpha8 |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime