Security Advisory - 01-31-2018

11 views

Skip to first unread message

Taranveer Virk

unread,

Feb 2, 2018, 11:45:14 AM2/2/18

to LoopBackJS Announcements

There is a vulnerability in loopback-datasource-juggler that allows unauthorized alteration of records on same table. This impacts loopback (Version 2.x and 3.x).

It is fixed in loopback version 2.39.1 and 3.18.1

For more details see below:

Version 2.x: http://loopback.io/doc/en/lb2/Security-advisory-01-31-2018.html

Version 3.x: http://loopback.io/doc/en/lb3/Security-advisory-01-31-2018.html

Taranveer

Reply all

Reply to author

Forward

0 new messages