Skip to content

GHSA lookup

GHSA-XX6W-JXG9-2WH8

Pruva has a verified reproduction for GHSA-XX6W-JXG9-2WH8: Payload CMS: Blind SQL Injection in JSON/RichText Queries via Drizzle Adapters. The canonical evidence record is REPRO-2026-00092.

REPRO

REPRO-2026-00092

Package

@payloadcms/drizzle · npm

Severity

CRITICAL

Status

published