mongodb-query-parser
Ecosystem:
npm
npm
Package URL:
pkg:npm/mongodb-query-parser
Total PRs:
16 Dependabot PRs
16 Dependabot PRs
Latest PR:
about 1 month ago
about 1 month ago
Unique Repositories:
6 repositories
6 repositories
Unique Repos (30 days):
2 repositories
2 repositories
Security Advisories
Remote Code Execution in mongodb-query-parser
GHSA-97mg-3cr6-3x4c
CRITICAL
published about 5 years ago
• updated 4 months ago
Versions of `mongodb-query-parser` prior to 2.0.0 are vulnerable to Remote Code Execution. The package fails to sanitize queries, allowing attacker...
Remote code execution in mongo-express
GHSA-hxmg-hm46-cf62
CVE-2020-24391
CRITICAL
published over 4 years ago
• updated about 2 months ago
mongo-express before 1.0.0 offers support for certain advanced syntax but implements this in an unsafe way. NOTE: this may overlap CVE-2019-10769.
Recent PRs (filtered by: Major PRs )
Bump mongodb-query-parser from 2.1.2 to 4.4.2
dsp-testing/mongo-express #126
2.1.2 → 4.4.2
Major PR
Open
2 months ago
Package Details
| Name: | mongodb-query-parser |
| Ecosystem: | npm |
| PURL Type: | npm |
| Package URL: | pkg:npm/mongodb-query-parser |
| JSON API: | View JSON |
Security Advisories
Package Information
Description:
Parse MongoDB queries
| Repository: | https://github.com/mongodb-js/devtools-shared |
| Homepage: | https://github.com/mongodb-js/devtools-shared |
| Latest Release: |
4.3.2
6 months ago |
| Dependent Repos: | 100 |
| Dependent Packages: | 28 |
| Downloads: | 413,783 |
| Ranking: | Top 1.4249% by dependent repos Top 0.9329% by downloads Top 0.9172% by dependent pkgs |