CVE-2015-9244

Опубликовано: 29 мая 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 9.8

Описание

Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with mysql.escape() which could lead to SQL Injection.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.0.0~alpha8-1
cosmic	not-affected	2.0.0~alpha8-1
devel	not-affected	2.0.0~alpha8-1
esm-apps/bionic	not-affected	2.0.0~alpha8-1
esm-apps/xenial	not-affected	2.0.0~alpha8-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [2.0.0~alpha8-1]]
precise/esm	DNE
trusty	not-affected	2.0.0~alpha8-1
trusty/esm	DNE	trusty was not-affected [2.0.0~alpha8-1]

Показывать по

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2015-9244

CVSS3: 9.8

nvd

больше 7 лет назад

Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.

CVE-2015-9244

CVSS3: 9.8

debian

больше 7 лет назад

Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not ...

GHSA-fvq6-55gv-jx9f

github

больше 5 лет назад

SQL Injection in mysql

7.5 High

CVSS2

9.8 Critical

CVSS3