CVE-2007-6299

NONECVSS 0.0

0.0

Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonomy_select_nodes function, as demonstrated by the (1) taxonomy_menu, (2) ajaxLoader, and (3) ubrowser contributed modules.

🔗 References (22)

cve@mitrehttp://drupal.org/node/198162
cve@mitrehttp://secunia.com/advisories/27932
cve@mitrehttp://secunia.com/advisories/27951
cve@mitrehttp://secunia.com/advisories/27973
cve@mitrehttp://sourceforge.net/project/shownotes.php?release_id=559532
cve@mitrehttp://sourceforge.net/project/shownotes.php?release_id=559538
cve@mitrehttp://www.securityfocus.com/bid/26735
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/38884
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/38886
cve@mitrehttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00190.html
cve@mitrehttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00258.html
af854a3a-2127-422b-91ae-364da2661108http://drupal.org/node/198162
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27932
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27951
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27973

Is Your Infrastructure Affected by CVE-2007-6299?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-6299

📅 Published

🔄 Last Modified

🔗 References (22)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-6299?