CVE-2006-2742
CVE-2006-2742
SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 allows remote attackers to execute arbitrary SQL commands via the (1) count and (2) from variables to (a) database.mysql.inc, (b) database.pgsql.inc, and (c) database.mysqli.inc.
Productos afectados
n/a · n/a¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://drupal.org/node/65357http://secunia.com/advisories/20140http://secunia.com/advisories/21244https://exchange.xforce.ibmcloud.com/vulnerabilities/26654http://www.debian.org/security/2006/dsa-1125http://www.securityfocus.com/archive/1/435790/100/0/threadedhttp://www.securityfocus.com/bid/18245http://www.vupen.com/english/advisories/2006/1975