Critical severity9.8NVD Advisory· Published Feb 21, 2018· Updated Jun 17, 2026
CVE-2015-5725
CVE-2015-5725
Description
SQL injection vulnerability in the offset method in the Active Record class in CodeIgniter before 2.2.4 allows remote attackers to execute arbitrary SQL commands via vectors involving the offset variable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<2.2.4+ 1 more
- (no CPE)range: <2.2.4
- (no CPE)range: <2.2.4
- Range: <2.2.4
Patches
Vulnerability mechanics
References
4- forum.codeigniter.com/thread-62743.htmlnvdVendor Advisory
- github.com/bcit-ci/CodeIgniter/commit/0dde92def6b9f276f05ff77abb07ead318f9ec23nvdThird Party Advisory
- github.com/bcit-ci/CodeIgniter/issues/4020nvdThird Party Advisory
- www.codeigniter.com/userguide2/changelog.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.