Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm sequelize Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS1mNTk4LW1mcHYtZ21meM4AAxzf
Sequelize - Default support for “raw attributes” when using parentheses
Ecosystems: npm
Packages: sequelize, @sequelize/core
Source: GitHub Advisory Database
Published: 12 months ago
Critical
GSA_kwCzR0hTQS12cWZ4LWdqOTYtM3c5Nc4AAxyK
Unsafe fall-through in getWhereConditions
Ecosystems: npm
Packages: @sequelize/core, sequelize
Source: GitHub Advisory Database
Published: 12 months ago
Critical
GSA_kwCzR0hTQS13cmg5LWNqdjMtMmhwd84AAxxu
Sequelize vulnerable to SQL Injection via replacements
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: 12 months ago
Moderate
GSA_kwCzR0hTQS04YzI1LWYzbWotdjZoOM4AAxqp
Sequelize information disclosure vulnerability
Ecosystems: npm
Packages: @sequelize/core, sequelize
Source: GitHub Advisory Database
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS04bXdxLW1qNzMtcXY2OM4AAxqm
Duplicate advisory: Sequelize vulnerable to Improper Filtering of Special Elements
Ecosystems: npm
Packages: sequelize, @sequelize/core
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3NHAtMzZqOS1ycmoz
Denial of Service in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 3 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2OWgtcTNnai1jMzJ4
SQL Injection via GeoJSON in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 3 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI1OTgtMmY1OS1ybWhx
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 4 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo5eHAtOTJ2Yy01NTlq
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 4 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05anctMjM3ci1ndmZ2
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 4 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmcDktdnI0ai1mNDlq
NoSQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 4 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3NzctMnZxOC1jNHY0
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: almost 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4cHEtcG13OS00Z3Bt
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: about 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ2N3EtMnhxeC1mNHE1
Potential SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgyamMtcHdmai1oOXAz
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: about 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTljMnAtanc4cC1mODR2
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: about 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhxZzgtY3YzaC14cHB2
SQL Injection in sequelize
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Published: over 6 years ago
Filter by Package
parse-server 27 electron 26 @openzeppelin/contracts-upgradeable 20 @openzeppelin/contracts 19 sequelize 17 marked 16 tinymce 16 ckeditor4 14 swagger-ui 14 ghost 13 next 13 strapi 13 handlebars 13 vm2 12 directus 12 nodebb 11 angular 11 undici 10 jquery-rails 10 org.webjars.npm:jquery 10 jquery 10 @evershop/evershop 9 next-auth 9 validator 9 serve 9 systeminformation 8 jQuery 8 url-parse 8 jquery-ui-rails 8 jquery-ui 8 urijs 8 joplin 8 jsrsasign 8 npm 8 editor.md 8 org.webjars.npm:jquery-ui 8 steal 8 @strapi/strapi 8 bootstrap 8 matrix-js-sdk 8 jQuery.UI.Combined 8 node-forge 8 snyk-broker 7 hapi 7 tar 7 hermes-engine 7 nocodb 7 total.js 7 TinyMCE 7 tinymce/tinymce 7 shescape 7 matrix-react-sdk 7 lodash 7 keystone 7 parse-url 6 matrix-appservice-irc 6 aaptjs 6 express-cart 6 safe-eval 6 safer-eval 5 @strapi/plugin-users-permissions 5 jsonwebtoken 5 qs 5 generator-jhipster 5 ua-parser-js 5 @sequelize/core 5 yarn 5 openpgp 5 dns-sync 5 moment 5 sanitize-html 5 total4 5 dojo 5 lodash-es 5 sweetalert2 5 ecstatic 5 rendertron 5 public 5 prismjs 5 highcharts 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 remarkable 4 apollo-server-core 4 vditor 4 is-my-json-valid 4 aws-iot-device-sdk-v2 4 simple-markdown 4 awsiotsdk 4 dompurify 4 valine 4 mongoose 4 hummus 4 muhammara 4 simple-git 4 ejs 4 ws 4 fastify 4 glance 4 mermaid 4 vite 4 apostrophe 4 rsshub 4 protobufjs 4 xlsx 4 auth0-lock 4 vega 4 sails 4 @backstage/plugin-scaffolder-backend 4 @keystone-6/core 4 engine.io 4 auth0-js 4 axios 4 xmldom 4 passport-wsfed-saml2 4 uptime-kuma 4 meshcentral 4 materialize-css 4 realms-shim 4 uglify-js 3 socket.io-file 3 harp 3 @ckeditor/ckeditor5-markdown-gfm 3 yapi-vendor 3 simplehttpserver 3 lodash.defaultsdeep 3 blamer 3 parsel 3 apollo-server 3 json-ptr 3 llhttp 3 buttle 3 @sveltejs/kit 3 fast-xml-parser 3 keycloak-connect 3 m-server 3 @materializecss/materialize 3 object-path 3 nodemailer 3 codecov 3 @backstage/techdocs-common 3 loader-utils 3 ses 3 convict 3 dojox 3 hekto 3 follow-redirects 3 feathers-sequelize 3 mongo-express 3 @uppy/companion 3 grunt 3 localhost-now 3 openmct 3 bootstrap 3 docsify 3 tough-cookie 3 nadesiko3 3 minimist 3 @soketi/soketi 3 jspdf 3 js-yaml 3 postcss 3 static-eval 3 fuxa-server 3 mixme 3 slpjs 3 node-jose 3 socket.io-parser 3 @strapi/utils 3 stimulsoft-dashboards-js 3 uap-core 3 immer 3 snyk 3 jquery-validation 3 jwt-simple 3 xdLocalStorage 3 convert-svg-core 3 @cubejs-backend/api-gateway 3 @apollo/server 3 froala-editor 3 serialize-to-js 3 https-proxy-agent 3 wrangler 3 locutus 3 bson 3 connect 3 mysql 3 notevil 3 slp-validate 3 node-fetch 3 node-opcua 3 node-red-dashboard 3 bin-links 3 mxgraph 3 raneto 3 subtext 3 @hapi/subtext 3 jointjs 3 express-fileupload 3 ftp-srv 3 mathjs 3 org.webjars.npm:xlsx 3 node-ipc 3 ids-enterprise 3 http-live-simulator 3 @vrite/sdk 3 @frangoteam/fuxa 3 json-pointer 3 code-server 3 aedes 3 send 3 n8n 3 @commercial/subtext 3 schema-inspector 2 @finastra/ssr-pages 2 jose-node-cjs-runtime 2 jose-browser-runtime 2 jose 2 cacheable-request 2 google-closure-library 2 @braintree/sanitize-url 2 papaparse 2 fs-path 2 npm-user-validate 2 crud-file-server 2 react-dev-utils 2 cli 2 rollup-plugin-server 2 moment-timezone 2 markdown-it 2 pomelo-monitor 2 elliptic 2 mixin-deep 2 vega-functions 2 fs-git 2 jQuery.Validation 2 dot 2 semver 2 karma 2 hashbrown-cms 2 @actions/core 2 madlib-object-utils 2 ms 2 devcert 2 chromedriver 2 serve-lite 2 sharp 2 shell-quote 2 mversion 2 css-what 2 express-openid-connect 2 @node-saml/node-saml 2 passport-saml 2 deap 2 is-svg 2 @builder.io/qwik 2 tomato 2 hoek 2 deep-get-set 2 @adobe/css-tools 2 bootbox 2 payload 2 mongodb-query-parser 2 ckeditor/ckeditor 2 fullpage.js 2 node-static 2 netmask 2 @vendure/core 2 jquery 2 jsreport 2 matrix-appservice-bridge 2 nats 2 bootstrap-table 2 bodymen 2 @curveball/a12n-server 2 bignum 2 crypto-js 2 renovate 2 tree-kit 2 stringstream 2 oauth2-server 2 Moment.js 2 loopback-connector-mongodb 2 knockout 2 list-n-stream 2 pullit 2 node-simple-router 2 hawk 2 reveal.js 2 markdown-pdf 2 node-sass 2 merge-deep 2 mapbox.js 2 klona 2 mapbox-rails 2 mqtt 2 libnested 2 fastify-static 2 html-pages 2 fastify-csrf 2 detect-character-encoding 2