20 matches found
EUVD-2022-7485
Malicious code in bioql PyPI...
CVE-2014-125051
A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.php. The manipulation leads to sql injection. Upgrading to version 1.0.8 is able to address this...
himiklab yii2-jqgrid-widget vulnerable to SQL Injection
A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.php. The manipulation leads to sql injection. Upgrading to version 1.0.8 can address this issue. The...
GHSA-7MG5-RW39-Q67F himiklab yii2-jqgrid-widget vulnerable to SQL Injection
A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.php. The manipulation leads to sql injection. Upgrading to version 1.0.8 can address this issue. The...
Sql injection
A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.php. The manipulation leads to sql injection. Upgrading to version 1.0.8 is able to address this...
CVE-2014-125051
The CVE-2014-125051 entry concerns himiklab yii2-jqgrid-widget (up to 1.0.7). A vulnerability in addSearchOptionsRecursively (JqGridAction.php) allows SQL injection. Root cause: improper handling in the affected function leading to data-exposure/modify risk. Publicly stated impact is high/critica...
CVE-2014-125051 himiklab yii2-jqgrid-widget JqGridAction.php addSearchOptionsRecursively sql injection
A vulnerability was found in himiklab yii2-jqgrid-widget up to 1.0.7. It has been declared as critical. This vulnerability affects the function addSearchOptionsRecursively of the file JqGridAction.php. The manipulation leads to sql injection. Upgrading to version 1.0.8 is able to address this...
PT-2023-10121 · Himiklab · Yii2-Jqgrid-Widget
Name of the Vulnerable Software and Affected Versions: himiklab yii2-jqgrid-widget versions up to 1.0.7 Description: A critical issue affects the addSearchOptionsRecursively function of the file JqGridAction.php, leading to sql injection. Recommendations: For himiklab yii2-jqgrid-widget versions ...
yii2 SQL注入漏洞
yii2 is a fast, secure and professional PHP framework. An SQL injection vulnerability exists in himiklab yii2-jqgrid-widget version 1.0.7 and earlier. An attacker could exploit this vulnerability to perform a sql injection attack...
SQL Injection
mgallegos/laravel-jqgrid is vulnerable to SQL injection. The vulnerability exists in the getRows function in EloquentRepositoryAbstract.php because the library directly passes the values added at the end of query sorting to the database, allowing a malicious user to inject and execute arbitrary S...
laravel-jqgrid vulnerable to SQL Injection
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
GHSA-3FHJ-WPVJ-X5W8 laravel-jqgrid vulnerable to SQL Injection
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
CVE-2021-4262
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
CVE-2021-4262
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
Sql injection
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
CVE-2021-4262 laravel-jqgrid EloquentRepositoryAbstract.php getRows sql injection
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
CVE-2021-4262 laravel-jqgrid EloquentRepositoryAbstract.php getRows sql injection
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is...
Laravel SQL注入漏洞
Laravel is a web application framework from the Laravel community. A security vulnerability exists in laravel-jqgrid, which stems from a problem with the function getRows in the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php, which can lead to sql injection...
CVE-2021-4262
The CVE-2021-4262 entry relates to the laravel-jqgrid package, affecting the getRows function in src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The vulnerability arises from how sorting values are appended to the query, enabling SQL injection. Practical impact is SQL inj...
Cross-site Scripting (XSS)
jqGrid is vulnerable to cross-site scripting XSS attacks. These attacks are possible because HTML is being directly made from untrusted data with no escaping of attribute strings...