Search for vulnerabilities
| Vulnerability ID | VCID-atgx-r2qy-8ufe |
| Aliases |
GHSA-f5cv-xrv9-r8w7
GMS-2020-717 |
| Summary | NoSQL injection in express-cart Versions of `express-cart` before 1.1.8 are vulnerable to NoSQL injection. The vulnerability is caused by the lack of user input sanitization in the login handlers. In both cases, the customer login and the admin login, parameters from the JSON body are sent directly into the MongoDB query which allows to insert operators. These operators can be used to extract the value of the field blindly in the same manner of a blind SQL injection. In this case, the `$regex` operator is used to guess each character of the token from the start. ## Recommendation Update to version 1.1.8 or later. |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 8.0 |
| Risk | 4.0 |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| cvssv3.1_qr | HIGH | https://github.com/advisories/GHSA-f5cv-xrv9-r8w7 |
| generic_textual | HIGH | https://github.com/nodejs/security-wg |
| generic_textual | HIGH | https://github.com/nodejs/security-wg/blob/master/vuln/npm/472.json |
| generic_textual | HIGH | https://hackerone.com/reports/397445 |
| generic_textual | HIGH | https://www.npmjs.com/advisories/724 |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-04T16:20:13.984378+00:00 | GitLab Importer | Import | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/express-cart/GMS-2020-717.yml | 38.6.0 |