CVE-2006-2742
CVE-2006-2742
SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 allows remote attackers to execute arbitrary SQL commands via the (1) count and (2) from variables to (a) database.mysql.inc, (b) database.pgsql.inc, and (c) database.mysqli.inc.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://drupal.org/node/65357http://secunia.com/advisories/20140http://secunia.com/advisories/21244https://exchange.xforce.ibmcloud.com/vulnerabilities/26654http://www.debian.org/security/2006/dsa-1125http://www.securityfocus.com/archive/1/435790/100/0/threadedhttp://www.securityfocus.com/bid/18245http://www.vupen.com/english/advisories/2006/1975