vitaly-t/pg-promise

Releases641

Frequency6 days 6 hours

Last Release 3 months ago

Stars3.55K

PostgreSQL interface for Node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-29744 ↗	Jun 12, 2025Thursday, 12 June 2025, 16:15	5.4 MEDIUM	—
pg-promise before 11.5.5 is vulnerable to SQL Injection due to improper handling of negative numbers.