Mongoose CVEs and Security Vulnerabilities

Filtered by vendor Automattic Subscriptions

Filtered by product Mongoose Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-53900	2 Automattic, Mongoosejs	2 Mongoose, Mongoose	2025-10-01	9.1 Critical
Mongoose before 8.8.3 can improperly use $where in match, leading to search injection.

Page 1 of 1.