Description
SQL injection vulnerability in the Schema API in Drupal 6.x before 6.3 allows remote attackers to execute arbitrary SQL commands via vectors related to "an inappropriate placeholder for 'numeric' fields."
Remediation
References
Related Vulnerabilities
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2017-5645)
WordPress Plugin WP Code Highlight.js Cross-Site Scripting (0.6.3)
MySQL CVE-2018-2775 Vulnerability (CVE-2018-2775)
Apache Tomcat 7PK - Errors Vulnerability (CVE-2016-8745)
Perl Integer Overflow or Wraparound Vulnerability (CVE-2020-10878)