mysql2@3.9.7 vulnerabilities
fast mysql driver. Implements core protocol, prepared statements, ssl and compression in native JS
-
latest version
3.10.0
-
latest non vulnerable version
-
first published
11 years ago
-
latest version published
7 days ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the mysql2 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
mysql2 is a mostly API compatible with mysqljs and supports majority of features. Affected versions of this package are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using How to fix Prototype Pollution? Upgrade |
<3.9.8
|