CVE-2022-40824 B.C

A remote attacker can inject arbitrary SQL query that can cause denial of service.

CVE-2016-5244 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5246 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5247 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5248 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5249 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5250 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL injection.

CVE-2016-5251 An issue was discovered in CodeIgniter 3.1.13.

In certain situations, the remote DB_query_builder() function allowed SQL

Product architecture and supported platforms

CodeIgniter is a PHP framework for building web applications.

CodeIgniter 3.1.13 was released on July 12, 2016 and contains 7 vulnerabilities as listed below:

- CVE-2016-5244 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection.
- CVE-2016-5246 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection.
- CVE-2016-5247 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection.
- CVE-2016-5248 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection.
- CVE-2016-5249 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection
- CVE-2016-5250 An issue was discovered in CodeIgniter 3.1.13 where the remote DB_query_builder() function allowed SQL injection     -CVE - 2016 - 5251 An issue was discovered in Code Ignitor 3 . 1 . 13 where the remote DB_query _ builder () function allowed SQL injection

^^

These were all the vulnerabilities for that day

Timeline

Published on: 10/07/2022 11:15:00 UTC
Last modified on: 10/08/2022 01:44:00 UTC

References

• https://github.com/726232111/CodeIgniter3.1.13-SQL-Inject/blob/main/README.md
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-40824