Количество 6
Количество 6
CVE-2025-54119
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.
CVE-2025-54119
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter.
CVE-2025-54119
ADOdb is a PHP database class library that provides abstractions for p ...
GHSA-vf2r-cxg9-p7rf
The ADOdb sqlite3 driver allows SQL injection
BDU:2025-10815
Уязвимость библиотеки классов PHP adodb, связанная с непринятием мер по защите структуры запроса SQL, позволяющая нарушителю выполнить произвольный SQL-код
ROS-20250825-07
Уязвимость php-adodb
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter. | CVSS3: 10 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. This is fixed in version 5.22.10. To workaround this issue, only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter. | CVSS3: 10 | 0% Низкий | 6 месяцев назад |
| CVE-2025-54119 ADOdb is a PHP database class library that provides abstractions for p ... | CVSS3: 10 | 0% Низкий | 6 месяцев назад |
| GHSA-vf2r-cxg9-p7rf The ADOdb sqlite3 driver allows SQL injection | CVSS3: 10 | 0% Низкий | 6 месяцев назад |
 | BDU:2025-10815 Уязвимость библиотеки классов PHP adodb, связанная с непринятием мер по защите структуры запроса SQL, позволяющая нарушителю выполнить произвольный SQL-код | CVSS3: 10 | 0% Низкий | 6 месяцев назад |
 | ROS-20250825-07 Уязвимость php-adodb | CVSS3: 10 | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу