VulnerableCode Package Details - pkg:composer/adodb/adodb-php@5.22.10

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-73nz-mq75-pbhu	The ADOdb sqlite3 driver allows SQL injection Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. Note that the indicated Severity corresponds to a worst-case usage scenario, e.g. allowing user-supplied data to be sent as-is to the above-mentioned methods. ### Impact SQLite3 driver. ### Patches Vulnerability is fixed in ADOdb 5.22.10 (https://github.com/ADOdb/ADOdb/commit/5b8bd52cdcffefb4ecded1b399c98cfa516afe03). ### Workarounds Only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter. ### Credits Thanks to Marco Nappi (@mrcnpp) for reporting this vulnerability.	CVE-2025-54119 GHSA-vf2r-cxg9-p7rf

Vulnerability

Summary

Aliases

VCID-73nz-mq75-pbhu

The ADOdb sqlite3 driver allows SQL injection Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database and calls the metaColumns(), metaForeignKeys() or metaIndexes() methods with a crafted table name. Note that the indicated Severity corresponds to a worst-case usage scenario, e.g. allowing user-supplied data to be sent as-is to the above-mentioned methods. ### Impact SQLite3 driver. ### Patches Vulnerability is fixed in ADOdb 5.22.10 (https://github.com/ADOdb/ADOdb/commit/5b8bd52cdcffefb4ecded1b399c98cfa516afe03). ### Workarounds Only pass controlled data to metaColumns(), metaForeignKeys() and metaIndexes() method's $table parameter. ### Credits Thanks to Marco Nappi (@mrcnpp) for reporting this vulnerability.

CVE-2025-54119
GHSA-vf2r-cxg9-p7rf

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T23:34:29.657856+00:00	GitLab Importer	Fixing	VCID-73nz-mq75-pbhu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/adodb/adodb-php/CVE-2025-54119.yml	38.4.0
2026-04-12T00:54:39.361362+00:00	GitLab Importer	Fixing	VCID-73nz-mq75-pbhu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/adodb/adodb-php/CVE-2025-54119.yml	38.3.0
2026-04-07T04:58:20.339516+00:00	GHSA Importer	Fixing	VCID-73nz-mq75-pbhu	https://github.com/advisories/GHSA-vf2r-cxg9-p7rf	38.1.0
2026-04-03T01:02:45.688780+00:00	GitLab Importer	Fixing	VCID-73nz-mq75-pbhu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/adodb/adodb-php/CVE-2025-54119.yml	38.1.0
2026-04-02T12:41:48.815106+00:00	GitLab Importer	Fixing	VCID-73nz-mq75-pbhu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/adodb/adodb-php/CVE-2025-54119.yml	38.0.0
2026-04-01T12:55:58.228555+00:00	GithubOSV Importer	Fixing	VCID-73nz-mq75-pbhu	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/08/GHSA-vf2r-cxg9-p7rf/GHSA-vf2r-cxg9-p7rf.json	38.0.0