Описание
Duplicate advisory: Sequelize - Unsafe fall-through in getWhereConditions
Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-vqfx-gj96-3w95. This link is maintained to preserve external references.
Original Description
Due to improper parameter filtering in the sequalize js library, can a attacker peform injection.
Пакеты
Наименование
@sequelize/core
npm
Затронутые версииВерсия исправления
< 7.0.0-alpha.20
7.0.0-alpha.20
8.8 High
CVSS3
Дефекты
CWE-843
8.8 High
CVSS3
Дефекты
CWE-843