SQL injection possibility

PKSA-1w2c-vck2-5d2w

Affected package: doctrine/orm

Affected version: >=2.0.0,<2.0.3

Reported by:
FriendsOfPHP/security-advisories