Skip to main content

Connect Pg Simple

1 CVEs product

Monthly

CVE-2019-15658 npm HIGH PATCH This Week

connect-pg-simple before 6.0.1 allows SQL injection if tableName or schemaName is untrusted data. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Connect Pg Simple
NVD GitHub
CVSS 3.0
7.3
EPSS
1.0%
EPSS 1% CVSS 7.3
HIGH PATCH This Week

connect-pg-simple before 6.0.1 allows SQL injection if tableName or schemaName is untrusted data. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Connect Pg Simple
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy