CVE-2016-10553 - AskarLabs CVE Database

CVE-2016-10553

Vendor Hackerone

Product sequelize node module

Weakness CWE-89 · SQLi

Published May 31, 2018

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. A fix was pushed out that fixed potential SQL injection in sequelize 2.1.3 and earlier.

Key dates

02Disclosure timeline

May 31, 2018 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2016-10553

Related vulnerabilities

04Related CVE

CVE-2023-0534 SourceCodester Online Tours & Travels Management System expense_report.php sql injection CVE-2025-12252 code-projects Online Event Judging System action.php sql injection CVE-2026-2176 code-projects Contact Management System index.py sql injection CVE-2026-10262 code-projects Real State Services Login loginuser.php sql injection CVE-2025-10828 SourceCodester Pet Grooming Management Software edit.php sql injection