Packagist (Composer) package
jackalope/jackalope-doctrine-dbal
pkg:composer/jackalope/jackalope-doctrine-dbal
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-43822 | Hig | 8.5 | < 1.7.4 | 1.7.4 | Dec 13, 2021 | Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API (PHPCR) using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If t |
- affected < 1.7.4fixed 1.7.4
Jackalope Doctrine-DBAL is an implementation of the PHP Content Repository API (PHPCR) using a relational database to persist data. In affected versions users can provoke SQL injections if they can specify a node name or query. Upgrade to version 1.7.4 to resolve this issue. If t