CVE-2015-6659

Currently unrated 🤨

Key Information

Vendor: Drupal
Status: Drupal
Vendor: CVE Published:; 24 August 2015

Summary

SQL injection vulnerability in the SQL comment filtering system in the Database API in Drupal 7.x before 7.39 allows remote attackers to execute arbitrary SQL commands via an SQL comment.

Refferences

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://www.securitytracker.com/id/1033358

vdb-entryx_refsource_SECTRACK

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://www.securityfocus.com/bid/76432

vdb-entryx_refsource_BID

http://www.debian.org/security/2015/dsa-3346

vendor-advisoryx_refsource_DEBIAN

https://www.drupal.org/SA-CORE-2015-003

x_refsource_CONFIRM

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

Timeline

Vulnerability published
Aug 24, 2015
Vulnerability Reserved
Aug 24, 2015

Collectors

NVD DatabaseMitre Database