Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2022-31631

In PHP versions 8.0.* before 8.0.27, 8.1.* before 8.1.15, 8.2.* before 8.2.2 when using PDO::quote() function to quote user-supplied data for SQLite, supplying an overly long string may cause the driver to incorrectly quote the data, which may further lead to SQL injection vulnerabilities.

No technical information available.

No CWE or OWASP classifications available.

Software From Fixed in
php / php 8.0.0 8.0.27
php / php 8.1.0 8.1.15
php / php 8.2.0 8.2.2