Critical severity9.8NVD Advisory· Published Nov 19, 2019· Updated Jun 17, 2026
CVE-2019-10766
CVE-2019-10766
Description
Pixie versions 1.0.x before 1.0.3, and 2.0.x before 2.0.2 allow SQL Injection in the limit() function due to improper sanitization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
usmanhalalit/pixiePackagist | < 1.0.3 | 1.0.3 |
usmanhalalit/pixiePackagist | >= 2.0.0, < 2.0.2 | 2.0.2 |
Affected products
2- Pixie/Pixiedescription
Patches
Vulnerability mechanics
References
4- snyk.io/vuln/SNYK-PHP-USMANHALALITPIXIE-534879nvdExploitPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-68wg-qv6r-j4vpghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-10766ghsaADVISORY
- github.com/usmanhalalit/pixie/commit/9bd991021abbcbfb19347a07dca8b7e518b8abc9ghsaWEB
News mentions
0No linked articles in our index yet.