CVE-2025-14179 | PHP up to 8.2.30/8.3.30/8.4.20/8.5.5 PDO Firebird Driver strncat sql injection (GHSA-w476-322c-wpvm)

A vulnerability was found in PHP up to 8.2.30/8.3.30/8.4.20/8.5.5. It has been declared as critical. This affects the function strncat of the component PDO Firebird Driver. Such manipulation leads to sql injection.

This vulnerability is referenced as CVE-2025-14179. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More