Version Details and Security Vulnerabilities

📦

mysql2

3.6.5

Comparision Betweeen 3.6.5 and 3.6.4

Identify the differences between the current version of the package and the previous one.

Version

Dependencies

Dev Dependencies

Peer Dependencies

Distributed Files

108

Unpacked Size

591.95 KB

591.87 KB

Security Vulnerabilities

This site is an independent open-source project and is not affiliated with, endorsed by, or sponsored by npm, Inc. or GitHub, Inc. The name “npm” is a registered trademark of npm, Inc., used here solely to describe compatibility and reference publicly available npm package data.

Version Details and Security Vulnerabilities

📦

mysql2

3.6.5

Comparision Betweeen 3.6.5 and 3.6.4

Identify the differences between the current version of the package and the previous one.

Version

Dependencies

Dev Dependencies

Peer Dependencies

Distributed Files

108

Unpacked Size

591.95 KB

591.87 KB

Security Vulnerabilities

Security Details

Comprehensive list of direct or transitive vulnerabilities for version 3.6.5 of the package mysql2.

All Security Vulnerabilities

All the vulnerabilities related to the version 3.6.5 of the package

Summary:

mysql2 vulnerable to Prototype Poisoning

Details:

Versions of the package mysql2 before 3.9.4 are vulnerable to Prototype Poisoning due to insecure results object creation and improper user input sanitization passed through parserFn in text_parser.js and binary_parser.js.

Details about mysql2@3.6.5

Summary:

MySQL2 for Node Arbitrary Code Injection

Details:

Versions of the package mysql2 before 3.9.7 are vulnerable to Arbitrary Code Injection due to improper sanitization of the timezone parameter in the readCodeFor function by calling a native MySQL Server date/time function.

Details about mysql2@3.6.5

Summary:

mysql2 Remote Code Execution (RCE) via the readCodeFor function

Details:

Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution (RCE) via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values.

Details about mysql2@3.6.5

Summary:

mysql2 cache poisoning vulnerability

Details:

Versions of the package mysql2 before 3.9.3 are vulnerable to Improper Input Validation through the keyFromFields function, resulting in cache poisoning. An attacker can inject a colon : character within a value of the attacker-crafted key.

Details about mysql2@3.6.5

Summary:

mysql2 vulnerable to Prototype Pollution

Details:

Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables.

Details about mysql2@3.6.5

Security Details

Comprehensive list of direct or transitive vulnerabilities for version 3.6.5 of the package mysql2.

All Security Vulnerabilities

All the vulnerabilities related to the version 3.6.5 of the package

Summary:

mysql2 vulnerable to Prototype Poisoning

Details:

Details about mysql2@3.6.5

Summary:

MySQL2 for Node Arbitrary Code Injection

Details:

Details about mysql2@3.6.5

Summary:

mysql2 Remote Code Execution (RCE) via the readCodeFor function

Details:

Details about mysql2@3.6.5

Summary:

mysql2 cache poisoning vulnerability

Details:

Details about mysql2@3.6.5

Summary:

mysql2 vulnerable to Prototype Pollution

Details:

Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables.

Details about mysql2@3.6.5

Version Details and Security Vulnerabilities

mysql2

Comparision Betweeen 3.6.5 and 3.6.4

Security Vulnerabilities

Version Details and Security Vulnerabilities

mysql2

Comparision Betweeen 3.6.5 and 3.6.4

Security Vulnerabilities

Security Details

All

Transitive Dependencies

Package

All Security Vulnerabilities

Security Details

All

Transitive Dependencies

Package

All Security Vulnerabilities

Version Details and Security Vulnerabilities

mysql2

Comparision Betweeen 3.6.5 and 3.6.4

Security Vulnerabilities

Version Details and Security Vulnerabilities

mysql2

Comparision Betweeen 3.6.5 and 3.6.4

Security Vulnerabilities

Security Details

All

Transitive Dependencies

Package

All Security Vulnerabilities

mysql2@3.6.5 GHSA-49j4-86m8-q2jw 6.9

mysql2@3.6.5 GHSA-4rch-2fh8-94vw 9.8

mysql2@3.6.5 GHSA-fpw7-j2hg-69v5 9.8

mysql2@3.6.5 GHSA-mqr2-w7wj-jjgr 6.9

mysql2@3.6.5 GHSA-pmh2-wpjm-fj45 8.2

Security Details

All

Transitive Dependencies

Package

All Security Vulnerabilities

mysql2@3.6.5 GHSA-49j4-86m8-q2jw 6.9

mysql2@3.6.5 GHSA-4rch-2fh8-94vw 9.8

mysql2@3.6.5 GHSA-fpw7-j2hg-69v5 9.8

mysql2@3.6.5 GHSA-mqr2-w7wj-jjgr 6.9

mysql2@3.6.5 GHSA-pmh2-wpjm-fj45 8.2