@strapi/database@0.0.0-experimental.f9cac24ba3b2f6acb12d0fb5669106e5a134174e vulnerabilities
Strapi's database layer
-
latest version
5.4.1
-
latest non vulnerable version
-
first published
3 years ago
-
latest version published
4 days ago
Direct Vulnerabilities
Known vulnerabilities in the @strapi/database package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@strapi/database is a Strapi's database layer Affected versions of this package are vulnerable to Information Exposure such that it is possible to leak private fields if one is using the Note: This can lead to filtering attacks on everything related to the object, including admin passwords and reset-tokens. How to fix Information Exposure? Upgrade |
<4.10.8
|
@strapi/database is a Strapi's database layer Affected versions of this package are vulnerable to Information Exposure by developers, users, or plugins, all of who can make every attribute of a NOTE: If a user mutates the content-type they will not be affected. How to fix Information Exposure? Upgrade |
<4.10.8
|