Paragon Initiative Enterprises: Full Path Disclosure In EasyDB

Hi, as reported in 115337 about a full path disclosure in EasyDB you fixed some of them in last commits but single function is vulnerable too and not fixed yet! ifcount$params != count$params,COUNTRECURSIVE throw new \InvalidArgumentException"Invalid params"; this will check $params to be 1d arra...

Paragon Initiative Enterprises: Full Path Disclosure

Hi as reported in email, there is a full path disclosure in EasyDB you fixed some of them in last commit add this code before and "execute$params" function call! ifcount$params != count$params,COUNTRECURSIVE throw new \InvalidArgumentException"Invalid params"; this will check $params to be 1d...