CVE-2022-29822

Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection
References
Link Resource
https://csirt.divd.nl/CVE-2022-29822/ Third Party Advisory
https://csirt.divd.nl/DIVD-2022-00020 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:feathersjs:feathers-sequelize:*:*:*:*:*:node.js:*:*

History

02 Jan 2024, 19:15

Type Values Removed Values Added
Summary Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection

07 Nov 2023, 03:46

Type Values Removed Values Added
Summary Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection

28 Jul 2023, 14:13

Type Values Removed Values Added
CPE cpe:2.3:a:featherjs:feathers-sequelize:*:*:*:*:*:node.js:*:* cpe:2.3:a:feathersjs:feathers-sequelize:*:*:*:*:*:node.js:*:*
First Time Feathersjs feathers-sequelize
Feathersjs

Information

Published : 2022-10-26 10:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-29822

Mitre link : CVE-2022-29822

CVE.ORG link : CVE-2022-29822


JSON object : View

Products Affected

feathersjs

  • feathers-sequelize
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')