Description
SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 allows remote attackers to execute arbitrary SQL commands via the (1) count and (2) from variables to (a) database.mysql.inc, (b) database.pgsql.inc, and (c) database.mysqli.inc.
Remediation
References
Related Vulnerabilities
WordPress Plugin Affiliates Manager Multiple Vulnerabilities (2.9.13)
Joomla Other Vulnerability (CVE-2005-3773)
WordPress Plugin Simple Banner Cross-Site Scripting (2.10.3)
SharePoint CVE-2023-21742 Vulnerability (CVE-2023-21742)
WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.6.1)