Description
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.
Remediation
References
Related Vulnerabilities
Zenphoto Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5595)
WordPress Plugin Email newsletter 'option' Parameter Information Disclosure (8.0)
Python CVE-2023-6507 Vulnerability (CVE-2023-6507)
WordPress 4.4.x Cross-Site Scripting Vulnerability (4.4 - 4.4.2)
WordPress Plugin Flickr Justified Gallery Cross-Site Scripting (3.3.6)