Description
ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods.
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
cve@mitre.org
https://github.com/top-think/thinkphp/issues/553af854a3a-2127-422b-91ae-364da2661108
https://github.com/top-think/thinkphp/issues/553