Unrated severityNVD Advisory· Published Oct 7, 2022· Updated Apr 9, 2025

CVE-2022-40828

Description

B.C. Institute of Technology CodeIgniter <=3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php or_where_not_in() function. Note: Multiple third parties have disputed this as not a valid vulnerability.

Affected products

B.C. Institute of Technology/CodeIgniterdescription
osv-coords
pkg:bitnami/codeigniter
Range: >= 3.0.0, < 3.1.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/726232111/CodeIgniter3.1.13-SQL-Inject/blob/main/README.mdmitre
github.com/bcit-ci/CodeIgniter/issues/6161mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000