Описание
ADOdb SQL injection vulnerability
The ADOdb Library for PHP prior to version 5.20.11 is prone to SQL Injection vulnerability in multiple drivers.
Ссылки
- https://github.com/ADOdb/ADOdb/pull/311
- https://github.com/ADOdb/ADOdb/pull/401
- https://github.com/dregad/ADOdb/commit/34788ce8c1d08500631f55764cc2247b9c7cfd2b
- https://github.com/dregad/ADOdb/commit/d29c23f2264ec95c6d3851e0f51ce240b2f36b74
- https://github.com/FriendsOfPHP/security-advisories/blob/master/adodb/adodb-php/2018-03-06.yaml
Пакеты
Наименование
adodb/adodb-php
composer
Затронутые версииВерсия исправления
< 5.20.11
5.20.11
Дефекты
CWE-89
Дефекты
CWE-89