CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the having method in the systemdatabaseDBquerybuilder.php location...

CVE-2022-40828

CVE-2022-40828 affects CodeIgniter up to version 3.1.13. The root cause is an SQL injection in the or_where_not_in() logic within system/database/DB_query_builder.php, enabling an attacker to inject malicious SQL. Impact is described as high for confidentiality, integrity, and availability. A pat...

CVE-2022-40832

CodeIgniter up to version 3.1.13 is affected by an SQL injection in the having() path of the DB query builder (system/database/DB_query_builder.php). The vulnerability is cited across multiple feeds (CodeIgniter <=3.1.13; some parties dispute its validity). Impact is described as SQL injection...

CVE-2022-40827

CVE-2022-40827 affects CodeIgniter up to version 3.1.13. Affects the where() handling in system/database/DB_query_builder.php, enabling SQL injection. Multiple sources note this vulnerability; some third parties dispute its validity. CVSS details in entries indicate high impact (CRITICAL): confid...

PT-2022-25558 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the or having function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

PT-2022-25565 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the having function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

CVE-2022-40824

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orwhere function. Note: Multiple third parties have disputed this as not a valid vulnerability...

PT-2022-25560 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns a SQL Injection vulnerability via the or where not in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple...

CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection issue in the systemdatabaseDBquerybuilder.php location...

PT-2022-25568 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the systemdatabaseDB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties. Recommendations: For versions =3.1.1...

CVE-2022-40835

CVE-2022-40835 refers to a SQL injection issue in CodeIgniter <= 3.1.13, via the file system/database/DB_query_builder.php. The vulnerability is described as affecting CodeIgniter’s CodeIgniter framework versions up to 3.1.13, with a root cause tied to the DB_query_builder component. The CVE e...

CVE-2022-40829

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orlike function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CodeIgniter SQL注入漏洞

CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the orlike method in the systemdatabaseDBquerybuilder.php location...

CVE-2022-40826

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orhaving function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CVE-2022-40831

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php like function. Note: Multiple third parties have disputed this as not a valid vulnerability...

PT-2022-25566 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the or where in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...

CVE-2022-40830

CVE-2022-40830 affects CodeIgniter

CVE-2022-40825

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php wherein function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CVE-2022-40824

CodeIgniter

PT-2022-25564 · Unknown · Codeigniter

Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the like function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...