Every CVE whose affected-product data names Sidorares Mysql2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-21507 — CVSS 6.5 (medium): Versions of the package mysql2 before 3.9.3 are vulnerable to Improper Input Validation through the keyFromFields function, resulting in…
CVE-2024-21509 — CVSS 6.5 (medium): Versions of the package mysql2 before 3.9.4 are vulnerable to Prototype Poisoning due to insecure results object creation and improper user…