Vulnerabilities > Sequelizejs > Sequelize > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-16 | CVE-2023-22579 | Type Confusion vulnerability in Sequelizejs Sequelize Due to improper parameter filtering in the sequalize js library, can a attacker peform injection. | 8.8 |
| 2023-02-16 | CVE-2023-22580 | Information Exposure vulnerability in Sequelizejs Sequelize Due to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure. | 7.5 |
| 2019-04-10 | CVE-2019-11069 | Improper Input Validation vulnerability in Sequelizejs Sequelize Sequelize version 5 before 5.3.0 does not properly ensure that standard conforming strings are used. | 7.5 |
| 2018-05-29 | CVE-2016-10556 | SQL Injection vulnerability in Sequelizejs Sequelize sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS In Postgres, SQLite, and Microsoft SQL Server there is an issue where arrays are treated as strings and improperly escaped. | 7.5 |