RSS   Vulnerabilities for 'Doctrine1.2.0'   RSS

2011-05-03
 
CVE-2011-1522

CWE-89
 

 
Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset field.

 

 >>> Vendor: Doctrine-project 12 Products
Cache
Doctrine
Doctrine1.2.0
Doctrine1.2.1
Doctrine1.2.2
Doctrine1.2.3
Annotations
Common
Doctrinemongodbbundle
Mongodb-odm
Object relational mapper
Database abstraction layer


Copyright 2024, cxsecurity.com

 

Back to Top