GMS-2018-12: SQL injection with limit() on MySQL

February 14, 2018

The limit() query method is vulnerable to SQL injection with MySQL.

References

github.com/propelorm/Propel2/commit/4c309e3e5adaba077f54c0fab93c34995d7c9b3d
github.com/propelorm/Propel2/issues/1463

Code Behaviors & Features

Detect and mitigate GMS-2018-12 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →