Описание
SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | code not present |
| devel | DNE | |
| feisty | not-affected | code not present |
| gutsy | DNE | |
| hardy | DNE | |
| upstream | released | 6.3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | code not present |
| feisty | DNE | |
| gutsy | not-affected | code not present |
| hardy | not-affected | code not present |
| upstream | released | 6.3 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."
SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 ...
SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."
EPSS
7.5 High
CVSS2