Lucene search
Ubuntu.comUB:CVE-2007-6299HistoryDec 10, 2007 - 12:00 a.m.
CVE-2007-6299
2007-12-1000:00:00
ubuntu.com
ubuntu.com
9
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.8%
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before
4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL
commands via modules that pass input to the taxonomy_select_nodes function,
as demonstrated by the (1) taxonomy_menu, (2) ajaxLoader, and (3) ubrowser
contributed modules.
Bugs
Related
nessus
nessus
FreeBSD : drupal -- SQL injection vulnerability (fa708908-a8c7-11dc-b41d-000fb5066b20)
2007-12-13 00:00:00
Fedora 8 : drupal-5.4-1.fc8 (2007-4163)
2007-12-11 00:00:00
Fedora 7 : drupal-5.4-1.fc7 (2007-4136)
2007-12-11 00:00:00
openvas
openvas
Fedora Update for drupal FEDORA-2007-4163
2009-02-27 00:00:00
FreeBSD Ports: drupal5
2008-09-04 00:00:00
FreeBSD Ports: drupal5
2008-09-04 00:00:00
freebsd
freebsd
drupal -- SQL injection vulnerability
2007-12-05 00:00:00
cve
cve
CVE-2007-6299
2007-12-10 18:46:00
cvelist
cvelist
CVE-2007-6299
2007-12-10 18:00:00
nvd
nvd
CVE-2007-6299
2007-12-10 18:46:00
prion
prion
Sql injection
2007-12-10 18:46:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.8%
Related for UB:CVE-2007-6299