SQL Injection

adodb/adodb-php is vulnerable to SQL Injection. The vulnerability is due to improper escaping of query parameters due to crafted table names being passed to the metaColumns, metaForeignKeys, or metaIndexes methods when connected to a sqlite3 database...

ROOT-OS-DEBIAN-11-CVE-2025-6965 CVE-2025-6965 in rootio-sqlite3 - Patched by Root

Root has patched CVE-2025-6965 in the rootio-sqlite3 package for Root:Debian:11. Multiple fixed versions available...

Linux Distros Unpatched Vulnerability : CVE-2022-21227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package sqlite3 before 5.0.3 are vulnerable to Denial of Service DoS which will invoke the toString function of the passed parameter. If passed an invalid...

EulerOS 2.0 SP11 : sqlite (EulerOS-SA-2025-1969)

According to the versions of the sqlite package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In SQLite 3.49.0 before 3.49.1, certain argument values to sqlite3dbconfig in the C-language API can cause a denial of service application crash. A...

ROOT-OS-DEBIAN-12-CVE-2025-6965 CVE-2025-6965 in rootio-sqlite3 - Patched by Root

Root has patched CVE-2025-6965 in the rootio-sqlite3 package for Root:Debian:12. Multiple fixed versions available...

SUSE: Security Advisory (SUSE-SU-2025:02744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2020-24736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script. CVE-2020-24736 Not...

SUSE: Security Advisory (SUSE-SU-2025:02672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2025:02672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-54119

CVE-2025-54119 affects the PHP ADOdb library. In versions 5.22.9 and earlier, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL when using ADOdb to connect to sqlite3 databases and calling metaColumns(), metaForeignKeys(), or metaIndexes() with a crafted table ...

CVE-2025-54119 ADOdb's sqlite3 driver allows SQL injection

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database a...

CVE-2025-54119 ADOdb's sqlite3 driver allows SQL injection

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database a...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : sqlite3 (SUSE-SU-2025:02672-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02672-1 advisory. - Update to version 3.50.2 - CVE-2025-6965: Fixed an integer truncation to avoid assertion faults...

The ADOdb sqlite3 driver allows SQL injection

Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns, metaForeignKeys or metaIndexes methods with a crafted table name. Note that the indicated Severity corresponds to a...

GHSA-VF2R-CXG9-P7RF The ADOdb sqlite3 driver allows SQL injection

Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns, metaForeignKeys or metaIndexes methods with a crafted table name. Note that the indicated Severity corresponds to a...

Security update for sqlite3

This update for sqlite3 fixes the following issues: Update to version 3.50.2 CVE-2025-6965: Fixed an integer truncation to avoid assertion faults. bsc1246597 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:02672-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: - Update to version 3.50.2 - CVE-2025-6965: Fixed an integer truncation to avoid assertion faults. bsc1246597...

The ADOdb sqlite3 driver allows SQL injection

Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns, metaForeignKeys or metaIndexes methods with a crafted table name. Note that the indicated Severity corresponds to a...

PT-2025-31792

Name of the Vulnerable Software and Affected Versions: ADOdb version 5.22.10 Description: Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when connecting to a sqlite3 database and calling the metaColumns, metaForeignKeys, or metaIndexes methods wit...

Ubuntu: Security Advisory (USN-7679-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...