PT-2006-4949 · Drupal · Drupal

Published

2006-08-14

Updated

2017-07-20

CVE-2006-4108

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Drupal versions 4.6 before revision 1.1.1.1.4.11 Drupal versions 4.7 before revision 1.13.2.5

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands.

Recommendations For versions 4.6 before revision 1.1.1.1.4.11, update to revision 1.1.1.1.4.11 or later. For versions 4.7 before revision 1.13.2.5, update to revision 1.13.2.5 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-4108

Affected Products

Drupal

PT-2006-4949 · Drupal · Drupal

CVE-2006-4108

Related Identifiers

Affected Products

References · 6