CVE-2023-24780

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in packagist/funadmin/funadmin

Identifiers

GHSA-7pmh-8qjj-4q36, CVE-2023-24780

Package Slug

packagist/funadmin/funadmin

Vulnerability

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Description

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns.

Affected Versions

All versions up to 3.2.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-03-16

source