CVE-2018-18546 Blast Radius

CRITICAL • CVSS 9.8ThinkPHP 3.2.4 has SQL Injection via the order parameter because the Library/Think/Db/Driver.class.php parseOrder function mishandles the key variable

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2018-18546.

Start Free Scan →← Back to CVE-2018-18546