Proteus® NextGen Data Privacy™ users can receive automated alerts using this data by linking it to their ITIL CMDB (IT asset register)

2024

2023

2022

2021

2020

CVE-2020-10380 (v3: 9.8) 17 Mar 2020
RMySQL through 0.10.19 allows SQL Injection.

2019

2018

CVE-2018-18476 (v3: 9.8) 24 Oct 2018
mysql-binuuid-rails 1.1.0 and earlier allows SQL Injection because it removes default string escaping for affected database columns.
CVE-2018-3754 (v3: 8.8) 3 Jul 2018
Node.js third-party module query-mysql versions 0.0.0, 0.0.1, and 0.0.2 are vulnerable to an SQL injection vulnerability due to lack of user input sanitization. This may allow an attacker to run arbitrary SQL queries when fetching data from database.
CVE-2018-10757 (v3: 9.8) 5 May 2018
CSP MySQL User Manager 2.3.1 allows SQL injection, and resultant Authentication Bypass, via a crafted username during a login attempt.

2017

2016

2015

CVE-2015-9244 (v3: 9.8) 29 May 2018
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.