Sql injection

2011-05-0320:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.2%

JSON

Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset field.

CPENameOperatorVersion
doctrineeq2.0.0 rc2
doctrineeq2.0.0 alpha3
doctrineeq2.0.0 alpha2
doctrineeq2.0.0 beta4
doctrineeq2.0.0 beta2
doctrineeq2.0.0 rc1
doctrineeq2.0.0
doctrineeq2.0.1
doctrineeq2.0.2
doctrineeq2.0.0 beta1

Name	Operator	Version
doctrine	eq	2.0.0 rc2
doctrine	eq	2.0.0 alpha3
doctrine	eq	2.0.0 alpha2
doctrine	eq	2.0.0 beta4
doctrine	eq	2.0.0 beta2
doctrine	eq	2.0.0 rc1
doctrine	eq	2.0.0
doctrine	eq	2.0.1
doctrine	eq	2.0.2
doctrine	eq	2.0.0 beta1