1 link tagged with all of: vulnerabilities + security + sql-injection + nodejs + prepared-statements
Links
This article reveals a vulnerability in Node.js applications using the MySQL and mysql2 packages, where prepared statements can be manipulated through JSON objects and arrays, leading to SQL injection risks. A case study highlights how this flaw allowed unauthorized password resets, compromising sensitive data.
sql-injection ✓
nodejs ✓
prepared-statements ✓
security ✓
vulnerabilities ✓