mysql prior to 2.0.0-alpha8 are affected by a SQL Injection vulnerability in the
mysql.escape() function, which does not properly escape object keys.
Update to version 2.0.0-alpha8 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedDec 28th, 2015
reportedInitial report by Sébastian DejongheDec 28th, 2015