GMS-2016-78: Improper Escaping of Bound Arrays

October 31, 2016

In Postgres, SQLite, and Microsoft SQL Server there is an issue where arrays are treated as strings and improperly escaped.

References

github.com/sequelize/sequelize/issues/5671

Detect and mitigate GMS-2016-78 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →