VulnerableCode Package Details - pkg:npm/typeorm@0.0.5-alpha.10

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/typeorm@0.0.5-alpha.10

Essentials
History (4)

purl	pkg:npm/typeorm@0.0.5-alpha.10

Next non-vulnerable version	0.3.26
Latest non-vulnerable version	0.3.26
Risk	4.5

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-36ea-senp-wqgq Aliases: CVE-2025-60542 GHSA-q2pj-6v73-8rgj	TypeORM vulnerable to SQL injection via crafted request to repository.save or repository.update SQL Injection vulnerability in TypeORM before 0.3.26 via crafted request to repository.save or repository.update due to the sqlstring call using stringifyObjects default to false.	0.3.26 Affected by 0 other vulnerabilities.
VCID-7d2s-wmb5-bybb Aliases: GHSA-w7q7-vjp8-7jv4 GMS-2019-144	SQL Injection in typeorm Versions of `typeorm` before 0.1.15 are vulnerable to SQL Injection. Field names are not properly validated allowing attackers to inject SQL statements and execute arbitrary SQL queries. ## Recommendation Upgrade to version 0.1.15	0.1.15 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tgut-czru-z3dv Aliases: CVE-2020-8158 GHSA-pf2j-9qmp-jqr2		0.2.25 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wjrc-6gta-p7dw Aliases: CVE-2022-33171 GHSA-fx4w-v43j-vc45		0.3.0 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-01T09:08:01.154629+00:00	GitLab Importer	Affected by	VCID-36ea-senp-wqgq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/typeorm/CVE-2025-60542.yml	38.6.0
2026-06-01T06:58:12.733933+00:00	GitLab Importer	Affected by	VCID-wjrc-6gta-p7dw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/typeorm/CVE-2022-33171.yml	38.6.0
2026-06-01T05:56:19.476859+00:00	GitLab Importer	Affected by	VCID-tgut-czru-z3dv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/typeorm/CVE-2020-8158.yml	38.6.0
2026-05-31T09:57:13.644886+00:00	GitLab Importer	Affected by	VCID-7d2s-wmb5-bybb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/typeorm/GHSA-w7q7-vjp8-7jv4.yml	38.6.0