SQL injection possible with limit() on MySQL

PKSA-8rvz-ck9f-yjrd

Affected package: propel/propel1

Affected version: >=1,<=1.7.1

Reported by:
FriendsOfPHP/security-advisories