exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2025-54119

около 1 месяца назад

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.

CVSS3: 10

EPSS: Низкий

CVE-2025-54119

около 1 месяца назад

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.

CVSS3: 10

EPSS: Низкий

CVE-2025-54119

около 1 месяца назад

ADOdb is a PHP database class library that provides abstractions for p ...

CVSS3: 10

EPSS: Низкий

ROS-20250825-07

11 дней назад

Уязвимость php-adodb

CVSS3: 10

EPSS: Низкий

GHSA-vf2r-cxg9-p7rf

около 1 месяца назад

The ADOdb sqlite3 driver allows SQL injection

CVSS3: 10

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.	CVSS3: 10	0% Низкий	около 1 месяца назад
CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.	CVSS3: 10	0% Низкий	около 1 месяца назад
CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for p ...	CVSS3: 10	0% Низкий	около 1 месяца назад
ROS-20250825-07 Уязвимость php-adodb	CVSS3: 10	0% Низкий	11 дней назад
GHSA-vf2r-cxg9-p7rf The ADOdb sqlite3 driver allows SQL injection	CVSS3: 10	0% Низкий	около 1 месяца назад

Уязвимостей на страницу