Skip to the content.

CVE-2022-29822 - Feathers - Improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection

CVE CVE-2022-29822
Case DIVD-2022-00020
Discovered by
  • Thomas Rinsma and Kevin Valk (Codean)
Credits
  • Discovered by Thomas Rinsma and Kevin Valk (Codean)
Products Feather js:
  • Feathers-Sequalize
Versions Feather js:
  • Feathers-Sequalize
    • 6.x (< 6.3.4)
Page author Victor Pasman
CVSS Base score: 10
References
Last modified 25 Oct 2022 19:13

Description

Due to improper parameter filtering in the Feathers js library, which may ultimately lead to SQL injection


JSON version