10 matches found
Debian DSA-5101-1 : libphp-adodb - security update
The remote Debian 10 / 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5101 advisory. Emmet Leahy reported that libphp-adodb, a PHP database abstraction layer library, allows to inject values into a PostgreSQL connection string. Depending on how the...
[SECURITY] [DSA 5101-1] libphp-adodb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5101-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 13, 2022 https://www.debian.org/security/faq -...
Updated php-adodb packages fix security vulnerability
Security hotfix release addressing a critical vulnerability in PostgreSQL connections CVE-2021-3850 Additional fixes: Fix usage of getmagic functions 619 657 Fix PHP warning in rs2rs function 679 pdo: Fix Fatal error in query 666 pdo: Fix undefined variable 678 pgsql: Fix Fatal error in close...
Debian DLA-2912-1 : libphp-adodb - LTS security update
The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2912 advisory. It was found that in libphp-adodb, a PHP database abstraction layer library, an attacker can inject values into the PostgreSQL connection string by bypassing adodbaddslashe...
CVE-2021-3850
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21...
CVE-2021-3850
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21...
CVE-2021-3850
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21...
CVE-2021-3850 Authentication Bypass by Primary Weakness in adodb/adodb
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21...
CVE-2021-3850
CVE-2021-3850 affects libphp-adodb, a PHP database abstraction layer used with adodb/adodb. The flaw allows injection into the PostgreSQL connection string by bypassing adodb_addslashes(), potentially enabling authentication bypass or exposing server information, depending on usage. Patches exist...
CVE-2021-3850
Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21...