0.001 Low
EPSS
Percentile
50.8%
catfan/Medoo is vulnerable to SQL injection. Improper escaping of user input string in the function columnQuote allows an attacker to inject and execute arbitrary SQL queries.
columnQuote
github.com/catfan/Medoo/commit/659864b393961bf224bba1efc03b7dcbed7de533