CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the wherein method in the systemdatabaseDBquerybuilder.php location...

CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the ornotlike method in the systemdatabaseDBquerybuilder.php location...

CVE-2022-40833

CVE-2022-40833 affects CodeIgniter versions <= 3.1.13. The underlying issue is an SQL injection in the or_where_in() function within system/database/DB_query_builder.php, leading to possible data disclosure/modification and service impact as reflected by the CVSS v3.1 base score of 9.8 (CRITIC...

CVE-2022-40831

CVE-2022-40831 affects CodeIgniter up to version 3.1.13, where the like() function in system/database/DB_query_builder.php is vulnerable to SQL injection. Public disclosures are mixed on validity, but multiple sources (including Red Hat and other feeds) reiterate the issue for CI 3.x

CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the having method in the systemdatabaseDBquerybuilder.php location...

CVE-2022-40828

CVE-2022-40828 affects CodeIgniter up to version 3.1.13. The root cause is an SQL injection in the or_where_not_in() logic within system/database/DB_query_builder.php, enabling an attacker to inject malicious SQL. Impact is described as high for confidentiality, integrity, and availability. A pat...

CVE-2022-40832

CodeIgniter up to version 3.1.13 is affected by an SQL injection in the having() path of the DB query builder (system/database/DB_query_builder.php). The vulnerability is cited across multiple feeds (CodeIgniter <=3.1.13; some parties dispute its validity). Impact is described as SQL injection...

CVE-2022-40827

CVE-2022-40827 affects CodeIgniter up to version 3.1.13. Affects the where() handling in system/database/DB_query_builder.php, enabling SQL injection. Multiple sources note this vulnerability; some third parties dispute its validity. CVSS details in entries indicate high impact (CRITICAL): confid...

PT-2022-25558 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the or having function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

PT-2022-25565 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the having function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

CVE-2022-40824

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orwhere function. Note: Multiple third parties have disputed this as not a valid vulnerability...

PT-2022-25560 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns a SQL Injection vulnerability via the or where not in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple...

CVE-2022-40835

CVE-2022-40835 refers to a SQL injection issue in CodeIgniter <= 3.1.13, via the file system/database/DB_query_builder.php. The vulnerability is described as affecting CodeIgniter’s CodeIgniter framework versions up to 3.1.13, with a root cause tied to the DB_query_builder component. The CVE e...

CVE-2022-40829

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orlike function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the orlike method in the systemdatabaseDBquerybuilder.php location...

CVE-2022-40826

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orhaving function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CVE-2022-40831

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php like function. Note: Multiple third parties have disputed this as not a valid vulnerability...

PT-2022-25566 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the or where in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

CVE-2022-40830

CVE-2022-40830 affects CodeIgniter

CVE-2022-40825

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php wherein function. Note: Multiple third parties have disputed this as not a valid vulnerability...