VYPR
Medium severity6.5NVD Advisory· Published May 1, 2026· Updated May 7, 2026

CVE-2026-42475

CVE-2026-42475

Description

SQL injection vulnerability in MixPHP Framework 2.x thru 2.2.17 via crafted on array to the joinOn function in BuildHelper.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
mix/mixPackagist
>= 2.0.0, <= 2.2.17

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.