mysql vulnerabilities

A node.js driver for mysql. It is written in JavaScript, does not require compiling, and is 100% MIT licensed.

  • latest version

    2.18.1

  • latest non vulnerable version

  • first published

    14 years ago

  • latest version published

    5 years ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the mysql package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Information Exposure

    >=2.17.1 <2.18.0
    • L
    Uninitialized Memory Exposure

    <2.14.0
    • M
    Unauthorized SSL Connection due to lack of cert authentication

    >=2.0.0 <2.3.0
    • H
    SQL Injection

    >=2.0.0-alpha <2.0.0-alpha8

    Package versions

    65 VERSIONS IN TOTAL
    versionpublisheddirect vulnerabilities
    2.18.123 Jan, 2020
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.18.021 Jan, 2020
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.17.118 Apr, 2019
    • 0
      C
    • 0
      H
    • 1
      M
    • 0
      L
    2.17.018 Apr, 2019
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.16.018 Jul, 2018
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.15.05 Oct, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.14.11 Aug, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.14.026 Jul, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.13.024 Jan, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 1
      L
    2.12.03 Nov, 2016
    • 0
      C
    • 0
      H
    • 0
      M
    • 1
      L