CVE-2023-24774
Funadmin vulnerable to SQL injection in packagist/funadmin/funadmin
Identifiers
GHSA-jx2x-fg9p-7gc7, CVE-2023-24774
Package Slug
packagist/funadmin/funadmin
Vulnerability
Funadmin vulnerable to SQL injection
Description
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \controller\auth\Auth.php.
Affected Versions
All versions up to 3.2.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-03-13
| source |