CVE-2023-25813

CRITICAL LAB

Sequelize < 6.19.1 - SQL Injection

Title source: rule

Description

Sequelize is a Node.js ORM tool. In versions prior to 6.19.1 a SQL injection exploit exists related to replacements. Parameters which are passed through replacements are not properly escaped which can lead to arbitrary SQL injection depending on the specific queries in use. The issue has been fixed in Sequelize 6.19.1. Users are advised to upgrade. Users unable to upgrade should not use the `replacements` and the `where` option in the same query.

Exploits (5)

nomisec STUB 1 stars

by White-BAO · poc

https://github.com/White-BAO/CVE-2023-25813

View Code ZIP pw:eip

nomisec WORKING POC

by bde574786 · poc

https://github.com/bde574786/Sequelize-1day-CVE-2023-25813

View Code ZIP pw:eip

nomisec WORKING POC

by numbbvi · poc

https://github.com/numbbvi/CVE-2023-25813

View Code ZIP pw:eip

nomisec WORKING POC

by sea-middle · poc

https://github.com/sea-middle/cve-2023-25813

View Code ZIP pw:eip

nomisec WORKING POC

by pbj2647 · poc

https://github.com/pbj2647/CVE-2023-25813

View Code ZIP pw:eip

References (4)

[Patch] https://github.com/sequelize/sequelize/commit/ccaa3996047fe00048d5993ab2dd43ebadd4f78b

[Exploit, Issue Tracking] https://github.com/sequelize/sequelize/issues/14519

[Release Notes] https://github.com/sequelize/sequelize/releases/tag/v6.19.1

[Exploit, Vendor Advisory] https://github.com/sequelize/sequelize/security/advisories/GHSA-wrh9-cjv3-2hpw

Scores

CVSS v3 10.0

EPSS 0.0352

EPSS Percentile 87.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull mysql:8.0

https://github.com/bde574786/Sequelize-1day-CVE-2023-25813

https://github.com/White-BAO/CVE-2023-25813

https://github.com/pbj2647/CVE-2023-25813

+2 more repos

View in Library

Details

CWE

CWE-89

Status published

Products (2)

npm/sequelize 0 - 6.19.1npm

sequelizejs/sequelize < 6.19.1

Published Feb 22, 2023

Tracked Since Feb 18, 2026