Lucene search
Veracode Vulnerability DatabaseVERACODE:39044HistoryJan 29, 2023 - 1:32 p.m.
SQL Injection
2023-01-2913:32:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
sql injection
processorderby function
query.php
arbitrary sql queries
software
EPSS
0.002
Percentile
51.8%
liftkit/database is vulnerable to SQL Injection attacks. A specifically crafted attack statement through the processOrderBy function in Query.php allows a malicious user to inject and execute arbitrary SQL queries on the target system.
Related
prion
prion
Sql injection
2023-01-16 11:15:00
cvelist
cvelist
CVE-2016-15020 liftkit database Query.php processOrderBy sql injection
2023-01-16 10:58:04
github
github
SQL Injection in liftkit/database
2023-01-16 12:30:18
cve
cve
CVE-2016-15020
2023-01-16 11:15:10
vulnrichment
vulnrichment
CVE-2016-15020 liftkit database Query.php processOrderBy sql injection
2023-01-16 10:58:04
osv
osv
SQL Injection in liftkit/database
2023-01-16 12:30:18
CVE-2016-15020
2023-01-16 11:15:10
nvd
nvd
CVE-2016-15020
2023-01-16 11:15:10