Headline
GHSA-jx2x-fg9p-7gc7: Funadmin vulnerable to SQL injection
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \controller\auth\Auth.php.
Funadmin vulnerable to SQL injection
Moderate severity GitHub Reviewed Published Mar 10, 2023 to the GitHub Advisory Database • Updated Mar 10, 2023
Related news
CVE-2023-24774: auth.Auth#selectFields[name] has sql injection vulnerability · Issue #12 · funadmin/funadmin
Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \controller\auth\Auth.php.