FIX vulnerability CVE-2021-43608 (barryvdh#1392)

allanlaal · barryvdh · d3v2a · commit af137f189376 · 2024-02-16T22:01:09.000+01:00
Doctrine DBAL 3.x before 3.1.4 allows SQL Injection: https://www.cve.org/CVERecord?id=CVE-2021-43608 Co-authored-by: Barry vd. Heuvel <barry@fruitcake.nl>
diff --git a/composer.json b/composer.json
@@ -24,7 +24,7 @@
         "ext-json": "*",
         "barryvdh/reflection-docblock": "^2.0.6",
         "composer/class-map-generator": "^1.0",
-        "doctrine/dbal": "^2.6 || ^3",
+        "doctrine/dbal": "^2.6 || ^3.1.4",
         "illuminate/console": "^9 || ^10",
         "illuminate/filesystem": "^9 || ^10",
         "illuminate/support": "^9 || ^10",
