Lucene search
CISACISA:FFCDB9DA7615256969EE472D5D78DB00HistoryOct 17, 2014 - 12:00 a.m.
Drupal Releases Security Advisory
2014-10-1700:00:00
us-cert.cisa.gov
14
0.975 High
EPSS
Percentile
100.0%
Drupal has released a security advisory to address an application program interface (API) vulnerability (CVE-2014-3704) that could allow an attacker to execute arbitrary SQL commands on an affected system.
This vulnerability affects all Drupal core 7.x versions prior to 7.32.
US-CERT advises users and administrators review Drupal’s Security Advisory and apply the necessary update or patch.
This product is provided subject to this Notification and this Privacy & Use policy.
Please share your thoughts.
We recently updated our anonymous product survey; we’d welcome your feedback.
Related
archlinux
archlinux
drupal: pre-auth sql injection
2014-10-16 00:00:00
openvas
openvas
Debian Security Advisory DSA 3051-1 (drupal7 - security update)
2014-10-15 00:00:00
Debian: Security Advisory (DSA-3051-1)
2014-10-14 00:00:00
Fedora Update for drupal7 FEDORA-2014-13053
2014-10-29 00:00:00
packetstorm
packetstorm
Drupal HTTP Parameter Key/Value SQL Injection
2014-10-18 00:00:00
Drupal Core 7.32 SQL Injection
2014-10-17 00:00:00
Drupal 7.X SQL Injection
2014-10-16 00:00:00
zdt
zdt
Drupal 7.0 < 7.31 - Drupalgeddon SQL Injection (Admin Session) Exploit
2018-03-29 00:00:00
Drupal < 7.32 Pre Auth SQL Injection Vulnerability
2014-11-04 00:00:00
Drupal 7.31 CORE pre Auth SQL Injection Vulnerability
2014-10-17 00:00:00
debian
debian
[SECURITY] [DSA 3051-1] drupal7 security update
2014-10-15 18:37:33
[BSA-098] Security update for drupal7
2014-10-17 16:55:02
mageia
mageia
Updated drupal packages fix security vulnerability
2014-10-26 00:23:09
freebsd
freebsd
drupal7 -- SQL injection
2014-10-15 00:00:00
dsquare
dsquare
Drupal core 7.x SQL Injection
2015-04-22 00:00:00
canvas
canvas
Immunity Canvas: DRUPAL_NAME_SQLI_CALLBACK
2014-10-15 20:55:06
Immunity Canvas: DRUPAL_NAME_SQLI
2014-10-15 20:55:06
fedora
fedora
[SECURITY] Fedora 19 Update: drupal7-7.32-1.fc19
2014-10-28 06:38:09
[SECURITY] Fedora 21 Update: drupal7-7.32-1.fc21
2014-11-01 17:17:24
[SECURITY] Fedora 20 Update: drupal7-7.32-1.fc20
2014-10-28 06:48:09
seebug
seebug
Drupal Core <= 7.32 - SQL Injection (PHP)
2014-11-13 00:00:00
Drupal Core <= 7.32 - SQL Injection (#2)
2014-11-13 00:00:00
ubuntucve
ubuntucve
CVE-2014-3704
2014-10-16 00:00:00
securityvulns
securityvulns
Advisory 01/2014: Drupal7 - pre Auth SQL Injection Vulnerability
2014-10-17 00:00:00
[ MDVSA-2015:181 ] drupal
2015-05-12 00:00:00
nuclei
nuclei
Drupal SQL Injection
2021-04-07 12:22:53
checkpoint_advisories
checkpoint_advisories
SQL Servers Unauthorized Commands SQL Injection - Ver2 (CVE-2014-3704)
2015-03-26 00:00:00
metasploit
metasploit
Drupal HTTP Parameter Key/Value SQL Injection
2014-10-16 17:32:39
exploitpack
exploitpack
Drupal 7.0 7.31 - Drupalgeddon SQL Injection (PoC) (Reset Password) (2)
2014-10-17 00:00:00
Drupal 7.0 7.31 - Drupalgeddon SQL Injection (Add Admin User)
2014-10-17 00:00:00
nessus
nessus
Fedora 21 : drupal7-7.32-1.fc21 (2014-12934)
2014-11-03 00:00:00
Debian DSA-3051-1 : drupal7 - security update
2014-10-17 00:00:00
Drupal Database Abstraction API SQLi
2014-10-16 00:00:00
cvelist
cvelist
CVE-2014-3704
2014-10-16 00:00:00
hackerone
hackerone
nvd
nvd
CVE-2014-3704
2014-10-16 00:55:06
osv
osv
drupal7 - security update
2014-10-15 00:00:00
cve
cve
CVE-2014-3704
2014-10-16 00:55:06
drupal
drupal
SA-CORE-2014-005 - Drupal core - SQL injection
2014-10-15 00:00:00
prion
prion
Sql injection
2014-10-16 00:55:00
f5
f5
SOL15782 - SQL injection vulnerability CVE-2014-3704
2014-11-03 00:00:00
K15782 : SQL injection vulnerability CVE-2014-3704
2014-11-03 00:00:00
debiancve
debiancve
CVE-2014-3704
2014-10-16 00:55:00
exploitdb
exploitdb
nmap
nmap
http-vuln-cve2014-3704 NSE Script
2015-12-14 21:29:30
kitploit
kitploit