THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2022-40828

Reserved:2022-09-19
Published:2022-10-07
Updated:2024-06-06

Description

B.C. Institute of Technology CodeIgniter <=3.1.13 is vulnerable to SQL Injection via system\database\DB_query_builder.php or_where_not_in() function. Note: Multiple third parties have disputed this as not a valid vulnerability.

References

https://github.com/726232111/CodeIgniter3.1.13-SQL-Inject/blob/main/README.md

https://github.com/bcit-ci/CodeIgniter/issues/6161

cve.org CVE-2022-40828

nvd.nist.gov CVE-2022-40828

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2022-40828