Vulnerabilities > Doctrine Project > Doctrine1 2 2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-05-03 | CVE-2011-1522 | SQL Injection vulnerability in Doctrine-Project products Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset field. | 7.5 |