Mageia 9: MGASA-2025-0179 moderate: php-adodb SQL injection risk

mageia

June 8, 2025

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases

Summary

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and calls pg_insert_id() with user-supplied data. This issue has been patched in version 5.22.9 - CVE-2025-46337.

References

- https://bugs.mageia.org/show_bug.cgi?id=34339

- https://ubuntu.com/security/notices/USN-7530-1

- https://github.com/ADOdb/ADOdb/releases/tag/v5.22.9

- https://www.cve.org/CVERecord?id=CVE-2025-46337

Topics Covered

security advisory moderate sql injection database security Mageia php-adodb

Resolution

SRPMS

- 9/core/php-adodb-5.22.9-1.mga9

Publication date: 08 Jun 2025

URL: https://advisories.mageia.org/MGASA-2025-0179.html

Type: security

CVE: CVE-2025-46337

Topics Covered

security advisory moderate sql injection database security Mageia php-adodb

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9: MGASA-2025-0179 moderate: php-adodb SQL injection risk

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9: MGASA-2025-0179 moderate: php-adodb SQL injection risk

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!