typeorm vulnerabilities

Data-Mapper ORM for TypeScript and ES2021+. Supports MySQL/MariaDB, PostgreSQL, MS SQL Server, Oracle, SAP HANA, SQLite, MongoDB databases.

latest version

0.3.27

latest non vulnerable version

first published

9 years ago

latest version published

1 months ago

licenses detected

Apache-2.0
>=0.0.1 <0.0.2-alpha.68
MIT
>=0.0.2-alpha.68

View typeorm package health on Snyk Advisor (opens in a new tab)

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the typeorm package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M SQL Injection	<0.3.26
H Prototype Pollution	<0.2.25
H SQL Injection	<0.1.15

Package versions

1022 VERSIONS IN TOTAL See all versions

version	published	direct vulnerabilities
0.4.0-alpha.1	7 Feb, 2023	0 C 0 H 0 M 0 L
0.3.28-dev.e0e7de1	26 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.d7867eb	20 Oct, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.d4f7b44	20 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.c16ef63	19 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.9ea8577	19 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.925dee0	29 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.8692da2	20 Oct, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.83e3a8a	25 Sep, 2025	0 C 0 H 0 M 0 L
0.3.28-dev.7c55d32	12 Oct, 2025	0 C 0 H 0 M 0 L