GHSA-7pmh-8qjj-4q36, CVE-2023-24780
packagist/funadmin/funadmin
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns.
All versions up to 3.2.0
Unfortunately, there is no solution available yet.
2023-03-16
source |