MixPHP Framework has an SQL injection vulnerability via crafted `data` array
Moderate severity
GitHub Reviewed
Published
May 1, 2026
to the GitHub Advisory Database
•
Updated May 7, 2026
Description
Published by the National Vulnerability Database
May 1, 2026
Published to the GitHub Advisory Database
May 1, 2026
Reviewed
May 7, 2026
Last updated
May 7, 2026
SQL injection vulnerability in MixPHP Framework 2.x thru 2.2.17 via crafted
dataarray to the data function in BuildHelper.php.References