Vulnerabilities > Codeigniter > Codeigniter > 3.1.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-07 | CVE-2022-40832 | SQL Injection vulnerability in Codeigniter B.C. | 9.8 |
2022-10-07 | CVE-2022-40833 | SQL Injection vulnerability in Codeigniter B.C. | 9.8 |
2022-10-07 | CVE-2022-40834 | SQL Injection vulnerability in Codeigniter B.C. | 9.8 |
2022-10-07 | CVE-2022-40835 | SQL Injection vulnerability in Codeigniter B.C. | 9.8 |
2020-03-23 | CVE-2020-10793 | Improper Privilege Management vulnerability in Codeigniter CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. | 8.8 |
2018-06-17 | CVE-2018-12071 | Session Fixation vulnerability in Codeigniter A Session Fixation issue exists in CodeIgniter before 3.1.9 because session.use_strict_mode in the Session Library was mishandled. | 7.5 |
2017-11-17 | CVE-2017-1000247 | Improper Input Validation vulnerability in Codeigniter 3.1.3 British Columbia Institute of Technology CodeIgniter 3.1.3 is vulnerable to HTTP Header Injection in the set_status_header() common function under Apache resulting in HTTP Header Injection flaws. | 5.0 |