CVE-2024-21512

Published May 29th, 2024

View on NVD ↗

CVSS v3

8.2

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables.

sidorares/node-mysql2

:zap: fast mysqljs/mysql compatible mysql driver for node.js

GitHub

4.37K