VYPR

Packagist (Composer) package

jackalope/jackalope-doctrine-dbal

pkg:composer/jackalope/jackalope-doctrine-dbal

Vulnerabilities (1)

  • CVE-2021-43822HigDec 13, 2021
    affected < 1.7.4fixed 1.7.4

    Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API (PHPCR) using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If t