CVE-2023-24777
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in packagist/funadmin/funadmin
Identifiers
GHSA-pvp6-53r9-8vxh, CVE-2023-24777
Package Slug
packagist/funadmin/funadmin
Vulnerability
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/list.
Affected Versions
All versions up to 3.2.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-03-16
| source |