CVE-2019-10752
CRITICAL9.8EPSS 0.43%SQL Injection in sequelize
發布日:2019/10/25修改日:2024/11/13
描述
Affected versions of `sequelize` are vulnerable to SQL Injection. The function `sequelize.json()` incorrectly formatted sub paths for JSON queries, which allows attackers to inject SQL statements and execute arbitrary SQL queries if user input is passed to the query. Exploitation example: ```js return User.findAll({ where: this.sequelize.json("data.id')) AS DECIMAL) = 1 DELETE YOLO INJECTIONS; -- ", 1) }); ``` ## Recommendation If you are using `sequelize` 5.x, upgrade to version 5.15.1 or later. If you are using `sequelize` 4.x, upgrade to version 4.44.3 or later.
受影響套件(1)
- npm/sequelizefrom 0, < 4.44.3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
參考連結(7)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2019-10752
- WEBhttps://github.com/sequelize/sequelize/commit/9bd0bc1,
- WEBhttps://github.com/sequelize/sequelize/commit/9bd0bc111b6f502223edf7e902680f7cc2ed541e
- WEBhttps://github.com/sequelize/sequelize/pull/11329
- WEBhttps://snyk.io/vuln/SNYK-JS-SEQUELIZE-459751
- WEBhttps://snyk.io/vuln/SNYK-JS-SEQUELIZE-459751,
- WEBhttps://www.npmjs.com/advisories/1146