CVE-2015-6659
CVE-2015-6659
SQL injection vulnerability in the SQL comment filtering system in the Database API in Drupal 7.x before 7.39 allows remote attackers to execute arbitrary SQL commands via an SQL comment.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165061.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/165690.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/165704.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/165723.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/165733.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/165840.htmlhttps://www.drupal.org/SA-CORE-2015-003http://www.debian.org/security/2015/dsa-3346http://www.securityfocus.com/bid/76432http://www.securitytracker.com/id/1033358