VULNMAP - Security Vulnerabilities

CVE
2024-57025
View CVE 2024-57025

Public CVE-2024-57025 disclosure

Mongoose before 8.9.5 can improperly use a nested $where filter with a populate() match, leading to search injection. NOTE: this issue exists because of an incomplete fix for CVE-2024-53900.

Link not working? No problem! With VULNMAP you always have guaranteed access to security information thanks to reliable backups.

🕰️ View on Wayback Machine 🔍 Search on Google NVD Database CVE.ORG Database
Our backup links ensure that critical data remains always available, even in case of unavailability of original sites.