Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
1 Apr 2016
17 May 2015
How to fix?
Upgrade to version 3.0.0 or greater.
sequelize version 3.0.0, two security related changes were introduced:
findOneno longer takes a string / integer / binary argument to represent a primaryKey. Use
where: "raw query"is no longer legal, you must now explicitly use
where: ["raw query", [replacements]]