huzr2018/orderby_SQLi

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-9047 ↗	Feb 23, 2019Saturday, 23 February 2019, 21:29	—	7.5 HIGH
GoRose v1.0.4 has SQL Injection when the order_by or group_by parameter can be controlled.
CVE-2019-8979 ↗	Feb 21, 2019Thursday, 21 February 2019, 05:29	—	7.5 HIGH
Kohana through 3.3.6 has SQL Injection when the order_by() parameter can be controlled.