Vulnerabilities > Knexjs

DATE CVE VULNERABILITY TITLE RISK
2022-12-19 CVE-2016-20018 SQL Injection vulnerability in Knexjs Knex
Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of a SQL query.
network
low complexity
knexjs CWE-89
7.5
2019-10-08 CVE-2019-10757 SQL Injection vulnerability in Knexjs Knex
knex.js versions before 0.19.5 are vulnerable to SQL Injection attack.
network
low complexity
knexjs CWE-89
critical
9.8