Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/mongoose — 7 CVEs · VulnScope
pkg:npm/
mongoose
7 total CVEs
CRITICAL
5
HIGH
2
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
10.0
CVE-2023-3696
Mongoose Prototype Pollution vulnerability
>= 7.0.0, < 7.3.3
CRITICAL
9.8
CVE-2024-53900
Mongoose search injection vulnerability
>= 8.0.0-rc0, < 8.8.3
CRITICAL
9.8
CVE-2022-24304
Mongoose Vulnerable to Prototype Pollution in Schema Object
>= 6.0.0, < 6.4.6
CRITICAL
9.1
Improper Input Validation in Automattic Mongoose
>= 5.0.0, < 5.7.5
CRITICAL
9.0
Mongoose search injection vulnerability
>= 8.0.0-rc0, < 8.9.5
HIGH
7.5
Mongoose's Improper Sanitization of $nor in sanitizeFilter May Allow NoSQL Injection
from 0, < 6.13.9
HIGH
7.0
automattic/mongoose vulnerable to Prototype pollution via Schema.path
>= 6.0.0, < 6.4.6
CVE-2019-17426
CVE-2025-23061
CVE-2026-42334
CVE-2022-2564