Filtered by vendor Automattic Subscriptions
Filtered by product Mongoose Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-53900 1 Automattic 1 Mongoose 2024-12-04 9.1 Critical
Mongoose before 8.8.3 can improperly use $where in match, leading to search injection.