Product

Everything you need to secure code, cloud, and runtime– in one central system

Code

Dependencies

Prevent open-source risks (SCA)

Secrets

Catch exposed secrets

SAST

Secure code as its written

Container Images

Secure images easily

Malware

Prevent supply chain attacks

Infrastructure as Code

Scan IaC for misconfigurations

License Risk & SBOMs

Avoid risk, be compliant

Outdated Software

Know your EOL runtimes

Cloud

Cloud / CSPM

Cloud misconfigurations

DAST

Black-box security testing

API Scanning

Test your API’s for vulns

Virtual Machines

No agents, no overhead

Kubernetes Runtime

soon

Secure your container workloads

Cloud Search

Cloud sprawl, solved

Defend

Runtime Protection

In-app Firewall / WAF

Features

AI AutoFix

1-click fixes with Aikido AI

CI/CD Security

Scan before merge and deployment

IDE Integrations

Get instant feedback while coding

On-Prem Scanner

Compliance-first local scanning

Solutions

Use Cases

Compliance

Automate SOC 2, ISO & more

Vulnerability Management

All-in-1 vuln management

Secure Your Code

Advanced code security

End-to-end cloud security

AI at Aikido

Let Aikido AI do the work

Block 0-Days

Block threats before impact

Industries

Resources

Developer

Security

Malware & CVE intelligence

Learn

Software Security Academy

Trust Center

Safe, private, compliant

Blog

The latest posts

Open Source

Aikido Intel

Malware & OSS threat feed

Zen

In-app firewall protection

Integrations

About

Download brand assets

Trusted by the best teams

Floris Van den Abeele

Sr. ML Engineer

OWASP

NIS2

Legaltech

fintech

RASP

End of Life

SQL Injections

DAST

cnapp

cspm

aspm

Infrastructure as a Code IaC

Network Security Monitoring

License Scanners

SBOM

Container Scanning

AppSec

Vulnerabilities

Software Supply Chain Security

API

Dependencies

Continuous Security Monitoring

DevSecOps

Vibe Coding

NPM

autofix

Malware

Article

open-source

SCA

intel

SOC 2

usecase

Tools

SAST

Compliance

CircleCI

Codeship

IMDSv2

Cloud

IMDSv1

SSRF

AWS

Blog posts by Floris Van den Abeele

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

February 14, 2025

•

Vulnerabilities & Threats

Prisma and PostgreSQL vulnerable to NoSQL injection? A surprising security risk explained

Discover how Prisma ORM and PostgreSQL can be vulnerable to operator injection, a form of NoSQL injection. Learn how attackers exploit this risk and get practical tips to secure your JavaScript applications with input validation and safe query practices.

Tags/

#Vulnerabilities

Get secure for free

Secure your code, cloud, and runtime in one central system.
Find and fix vulnerabilities fast automatically.

Start for Free

No CC required

Book a demo

No credit card required |Scan results in 32secs.

Company

Product Pricing About Careers Contact Partner with us

Resources

Docs Public API Docs Vulnerability Database Blog Integrations Glossary Press Kit Customer Reviews

Security

Trust Center Security Overview Change Cookie Preferences

Legal

Use Cases

Compliance SAST & DAST ASPM Vulnerability Management Generate SBOMs WordPress Security Secure Your Code Aikido for Microsoft Aikido for AWS

Industries

For HealthTech For MedTech For FinTech For SecurityTech For LegalTech For HRTech For Agencies For Enterprise For PE & Group Companies

Compare

vs All Vendors vs Snyk vs Wiz vs Mend vs Orca Security vs Veracode vs GitHub Advanced Security vs GitLab Ultimate vs Checkmarx vs Semgrep vs SonarQube

Connect

hello@aikido.dev

LinkedIn X

Stay up to date with all updates

Not quite there yet.

👋🏻 Thank you! You’ve been subscribed.

Team Aikido

Not quite there yet.

© 2025 Aikido Security BV | BE0792914919
🇪🇺 Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
🇪🇺 Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
🇺🇸 Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US