Description
SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 allows remote attackers to execute arbitrary SQL commands via the (1) count and (2) from variables to (a) database.mysql.inc, (b) database.pgsql.inc, and (c) database.mysqli.inc.
Remediation
References
Related Vulnerabilities
WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.5)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.32)
XWiki Cleartext Storage of Sensitive Information Vulnerability (CVE-2023-50719)
WordPress 4.7.x Prototype Pollution (4.7 - 4.7.22)
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-23503)