Mysql Server · Mysql Server · CVE-2015-9244
**Name of the Vulnerable Software and Affected Versions**
mysql versions prior to 2.0.0-alpha8
**Description**
The issue is related to SQL Injection due to the lack of proper escaping of object keys with `mysql.escape()` in the mysql node module. This could lead to SQL Injection attacks.
**Recommendations**
Update to version 2.0.0-alpha8 or later.