[CRITICAL] SQL injection possible with limit() on MySQL

PKSA-7tyg-2kv3-kq8f GHSA-7vw7-qx38-37vr

Affected package: propel/propel

Affected version: >=2.0.0-alpha1,<2.0.0-alpha8

Reported by:
GitHub, FriendsOfPHP/security-advisories