CVE-2019-8979

Publication date

2019-02-21 05:00:00

Family

mitre

State

PUBLISHED

Description

Kohana through 3.3.6 has SQL Injection when the order_by() parameter can be controlled.