1 results (0.001 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVE-2021-4262 – laravel-jqgrid EloquentRepositoryAbstract.php getRows sql injection
https://notcve.org/view.php?id=CVE-2021-4262
A vulnerability classified as critical was found in laravel-jqgrid. Affected by this vulnerability is the function getRows of the file src/Mgallegos/LaravelJqgrid/Repositories/EloquentRepositoryAbstract.php. The manipulation leads to sql injection. The name of the patch is fbc2d94f43d0dc772767a5bdb2681133036f935e. It is recommended to apply a patch to fix this issue. • https://github.com/mgallegos/laravel-jqgrid/commit/fbc2d94f43d0dc772767a5bdb2681133036f935e https://github.com/mgallegos/laravel-jqgrid/pull/72 https://vuldb.com/?id.216271 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') CWE-707: Improper Neutralization •