Описание
BEdita vulnerable to SQL injection
BEdita through 4.0.0-RC2 allows SQL injection during a save operation for a relation with parameters due to a lack of JSON escaping.
Пакеты
Наименование
bedita/bedita
composer
Затронутые версииВерсия исправления
< 4.0.0
4.0.0
Связанные уязвимости
CVSS3: 9.8
nvd
больше 6 лет назад
BEdita through 4.0.0-RC2 allows SQL injection during a save operation for a relation with parameters.