Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x prior to 1.2.4 and 2.x prior to 2.0.3 allow remote malicious users to execute arbitrary SQL commands via the (1) limit or (2) offset field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
doctrine-project doctrine1.2.1 |
||
doctrine-project doctrine1.2.3 |
||
doctrine-project doctrine1.2.0 |
||
doctrine-project doctrine1.2.2 |
||
doctrine-project doctrine 2.0.0 |
||
doctrine-project doctrine 2.0.1 |
||
doctrine-project doctrine 2.0.2 |