CVE-2016-7405
CVE-2016-7405
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://github.com/ADOdb/ADOdb/blob/v5.20.7/docs/changelog.mdhttps://github.com/ADOdb/ADOdb/commit/bd9eca9f40220f9918ec3cc7ae9ef422b3e448b8https://github.com/ADOdb/ADOdb/issues/226https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LT3WU77BRUJREZUYQ3ZQBMUIVIVIND4Y/https://security.gentoo.org/glsa/201701-59http://www.openwall.com/lists/oss-security/2016/09/07/8http://www.openwall.com/lists/oss-security/2016/09/15/1http://www.securityfocus.com/bid/92969