CNNVD-202508-281 Information

CNNVD ID

CNNVD-202508-281

Related CVE

CVE-2025-54119

• CNNVD Published: 2025-08-05

Description (Chinese)

ADOdb是ADOdb开源的一个PHP数据库类库。 ADOdb 5.22.9及之前版本存在SQL注入漏洞，该漏洞源于查询参数转义不当，可能导致SQL注入攻击。

Description (English)

ADOdb is a PHP database library from the ADOdb open source. ADOdb 5.22.9 and previous versions had an injection loophole in SQL, which stemmed from the inappropriate transposition of query parameters, which could lead to an attack on SQL.

Hazard Level

Low

Vulnerability Type

SQL注入

Affected Vendor

ADOdb

Published

2025-08-05

Last Modified

2026-02-24

References

https://github.com/ADOdb/ADOdb/commit/5b8bd52cdcffefb4ecded1b399c98cfa516afe03 https://github.com/ADOdb/ADOdb/issues/1083 https://github.com/ADOdb/ADOdb/security/advisories/GHSA-vf2r-cxg9-p7rf

Patch

https://adodb.org/dokuwiki/doku.php?id=index#releases