Security Advisory

CVE-2022-31631

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-12 22:10:45

Last updated 2025-02-13 16:06:41

Assigner php

State PUBLISHED

Description

In PHP versions 8.0.* before 8.0.27, 8.1.* before 8.1.15, 8.2.* before 8.2.2 when using PDO::quote() function to quote user-supplied data for SQLite, supplying an overly long string may cause the driver to incorrectly quote the data, which may further lead to SQL injection vulnerabilities.

← Browse all CVEs View on cve.org ↗