A remote attacker may leverage this vulnerability to execute arbitrary SQL commands and obtain access to database via SQL injection.
CVE-2018-16022 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to XSS via system\database\DB_query_builder.php near_equal() function.
CVE-2018-16023 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php .
CVE-2018-16024 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to XSS via system\database\DB_query_builder.php near_equal() function.
CVE-2018-16025 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php group_by() function.
CVE-2018-16026 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DB_query_
CVE-2018-16027 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgnite
=3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php .
CVE-2018-16028 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to XSS via system\database\DB_query_builder.php near() function.
CVE-2018-16029 The system\database\DB_query_builder.php in the BC Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php __toString() function
Timeline
Published on: 10/07/2022 11:15:00 UTC
Last modified on: 10/08/2022 01:32:00 UTC