RSS   Vulnerabilities for 'Doctrine1.2.1'   RSS

2011-05-03
 
CVE-2011-1522

CWE-89
 

 
Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset field.

 

 >>> Vendor: Doctrine-project 11 Products
Doctrine
Doctrine1.2.0
Doctrine1.2.1
Doctrine1.2.2
Doctrine1.2.3
Annotations
Cache
Common
Doctrinemongodbbundle
Mongodb-odm
Object relational mapper


Copyright 2018, cxsecurity.com

 

Back to Top