CVE-2016-15020
CVE-2016-15020 affects the LiftKit database library up to version 2.13.1. The vulnerability is in the function processOrderBy within src/Query/Query.php, where input manipulation leads to an SQL injection. The issue has a fixed release in version 2.13.2 , with the patch identified as 42ec8f2b22e0...