6 matches found
BIT-MONGOOSE-2024-53900
Mongoose before 8.8.3 can improperly use $where in match, leading to search injection...
CVE-2022-40825
B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php wherein function. Note: Multiple third parties have disputed this as not a valid vulnerability...
CVE-2022-40825
B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php wherein function. Note: Multiple third parties have disputed this as not a valid vulnerability...
PT-2022-25566 · Unknown · Codeigniter
Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the or where in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...
CodeIgniter SQL注入漏洞
CodeIgniter is an open source web framework written in PHP. A SQL injection vulnerability exists in CodeIgniter version 3.1.13 and earlier versions, which stems from a SQL injection problem in the wherein method in the systemdatabaseDBquerybuilder.php location...
PT-2022-25557 · Unknown · Codeigniter
Name of the Vulnerable Software and Affected Versions: CodeIgniter versions =3.1.13 Description: The issue concerns SQL Injection via the where in function in the system/database/DB query builder.php file. Note that the validity of this issue has been disputed by multiple third parties...