sequelize vulnerabilities

Sequelize is a promise-based Node.js ORM tool for Postgres, MySQL, MariaDB, SQLite, Microsoft SQL Server, Amazon Redshift and Snowflake’s Data Cloud. It features solid transaction support, relations, eager and lazy loading, read replication and more.

  • latest version

    6.37.7

  • latest non vulnerable version

  • first published

    14 years ago

  • latest version published

    5 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the sequelize package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Access of Resource Using Incompatible Type ('Type Confusion')

    <6.28.1
    • M
    Information Exposure

    <6.28.1
    • H
    Improper Filtering of Special Elements

    <6.29.0
    • H
    SQL Injection

    <6.21.2
    • C
    SQL Injection

    <6.19.1
    • M
    Denial of Service (DoS)

    <4.44.4
    • H
    SQL Injection

    >=4.0.0 <4.44.3>=5.0.0-0 <5.15.1
    • H
    SQL Injection

    <3.35.1
    • H
    SQL Injection

    >=3.0.0 <3.35.1>=4.0.0 <4.44.3>=5.0.0-0 <5.8.11
    • M
    SQL Injection

    >=5.0.0-0 <5.3.0
    • H
    Hash Injection

    <4.12.0
    • M
    SQL Injection

    <3.12.1
    • C
    SQL Injection

    >=3.4.0 <3.23.6
    • M
    Remote Memory Exposure

    <3.17.2
    • M
    SQL Injection

    >=0.2.2 <1.7.0-alpha3
    • M
    SQL Injection

    <3.20.0
    • H
    SQL Injection

    <2.0.0-rc8

    Package versions

    100 VERSIONS IN TOTAL See all versions
    versionpublisheddirect vulnerabilities
    7.0.0-next.126 Jul, 2019
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha2.24 Jan, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha2.14 Jan, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.915 Feb, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.811 Feb, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.710 Feb, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.67 Feb, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.54 Jan, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.41 Jan, 2022
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    7.0.0-alpha.327 Dec, 2021
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L