CVE-2021-42325
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in packagist/froxlor/froxlor
Identifiers
CVE-2021-42325
Package Slug
packagist/froxlor/froxlor
Vulnerability
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
Froxl allows SQL injection in Database/Manager/DbManagerMySQL.php via a custom DB name.
Affected Versions
All versions before 0.10.30
Solution
Upgrade to version 0.10.30 or above.
Last Modified
2021-10-20
| source |