Lucene search
Veracode Vulnerability DatabaseVERACODE:33517HistoryJan 05, 2022 - 5:02 a.m.
SQL Injection
2022-01-0505:02:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.1 Low
EPSS
Percentile
94.9%
codeigniter4/framework is vulnerable to SQL injection. The old function in system/Common.php does not properly sanitize the user input, which allows a remote attacker to inject arbitrary SQL commands to the APIs.
| CPE | Name | Operator | Version |
|---|---|---|---|
| codeigniter4/framework | le | v4.1.5 | |
| codeigniter4/framework | le | v4.1.5 |
Related
cvelist
cvelist
CVE-2022-21647 Deserialization of Untrusted Data in Codeigniter4
2022-01-04 20:05:11
osv
osv
CVE-2022-21647
2022-01-04 20:15:07
Deserialization of Untrusted Data in Codeigniter4
2022-01-06 22:52:41
BIT-codeigniter-2022-21647
2024-03-06 10:54:39
friendsofphp
friendsofphp
CVE-2022-21647: Deserialization of Untrusted Data in Codeigniter4
2022-01-04 00:59:31
CVE-2022-21647: Deserialization of Untrusted Data in Codeigniter4
2022-01-04 00:59:31
cve
cve
CVE-2022-21647
2022-01-04 20:15:07
prion
prion
Deserialization of untrusted data
2022-01-04 20:15:00
github
github
Deserialization of Untrusted Data in Codeigniter4
2022-01-06 22:52:41
cnvd
cnvd
CodeIgniter code issues vulnerabilities
2022-01-06 00:00:00
nvd
nvd
CVE-2022-21647
2022-01-04 20:15:07