← volver
CVE-2016-7405

CVE-2016-7405

EPSS 3.0%
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/ADOdb/ADOdb/blob/v5.20.7/docs/changelog.mdhttps://github.com/ADOdb/ADOdb/commit/bd9eca9f40220f9918ec3cc7ae9ef422b3e448b8https://github.com/ADOdb/ADOdb/issues/226https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LT3WU77BRUJREZUYQ3ZQBMUIVIVIND4Y/https://security.gentoo.org/glsa/201701-59http://www.openwall.com/lists/oss-security/2016/09/07/8http://www.openwall.com/lists/oss-security/2016/09/15/1http://www.securityfocus.com/bid/92969