AIKIDO-2024-10481

mongoose is vulnerable to NoSQL Injection

95

Critical

mongoose js

AIKIDO-2024-10481: mongoose is vulnerable to NoSQL Injection in versions 5.6.4 - 8.8.2.

NoSQL Injection
Vuln in 5.6.4 - 8.8.2
Fixed in 8.8.3
CVE-2024-53900
TL;DR

Who does this affect?

How can it be fixed?

Background info

Link to vendor website

Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US