3 matches found
CVE-2022-31140
Valinor is a PHP library that helps to map any input into a strongly-typed value object structure. Prior to version 0.12.0, Valinor can use ThrowablegetMessage when it should not have permission to do so. This is a problem with cases such as an SQL exception showing an SQL snippet, a database...
CVE-2022-31140 Valinor error messages leading to potential data exfiltration
Valinor is a PHP library that helps to map any input into a strongly-typed value object structure. Prior to version 0.12.0, Valinor can use ThrowablegetMessage when it should not have permission to do so. This is a problem with cases such as an SQL exception showing an SQL snippet, a database...
Valinor 安全漏洞
Valinor is a PHP library that helps map any input to a strongly typed value object structure. A security vulnerability exists in Valinor versions prior to 0.12.0, which stems from the fact that Valinor can be used without privileges to, for example, display SQL exceptions for SQL fragments, displ...