V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Triage Room
Threat Actors
Threats to Brazil
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
mongoosejs
Vulnerabilities in
mongoosejs
1 result
CVE-2025-23061
CRITICAL
Mongoose before 8.9.5 can improperly use a nested $where filter with a populate() match, leading to search injection. NOTE: this issue exist
EPSS
7.0%