17 matches found
Moodle Multiple Vulnerabilities (MSA-25-0031, MSA-25-0030, MSA-25-0032, MSA-25-0033, MSA-25-0034, MSA-25-0035, MSA-25-0036)
Moodle is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle"; ifdescription...
Mageia: Security Advisory (MGASA-2025-0179)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2025-0179 Updated php-adodb packages fix security vulnerability
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...
Ubuntu: Security Advisory (USN-7530-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-4177 : libphp-adodb - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4177 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4177-1 [email protected] https://www.debian.org/lts/security/...
Fedora: Security Advisory (FEDORA-2025-118f6569ff)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-a32ccde763)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4177-1] libphp-adodb security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4177-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk May 24, 2025 https://wiki.debian.org/LTS -...
Fedora: Security Advisory (FEDORA-2025-101800c1e1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : php-adodb (2025-101800c1e1)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-101800c1e1 advisory. 5.22.9 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for these...
CVE-2025-46337
A flaw was found in ADOdb, a PHP database abstraction library. The improper escaping of user-supplied input passed to the pginsertid function while connected to a PostgreSQL database poses a significant SQL injection risk. This flaw allows an attacker to execute arbitrary SQL statements. Mitigati...
CVE-2025-46337
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...
CVE-2025-46337
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...
CVE-2025-46337 SQL injection in ADOdb PostgreSQL driver pg_insert_id() method
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...
CVE-2025-46337
CVE-2025-46337 affects the PHP database library ADOdb. Prior to version 5.22.9, improper escaping of a query parameter can allow an attacker to execute arbitrary SQL statements when code using ADOdb connects to PostgreSQL and calls pg_insert_id() with user-supplied data. The issue has been patche...
CVE-2025-46337 SQL injection in ADOdb PostgreSQL driver pg_insert_id() method
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...
CVE-2025-46337 SQL injection in ADOdb PostgreSQL driver pg_insert_id() method
ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...