Description
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_check_hostname.
Remediation
References
Related Vulnerabilities
Roundcube Resource Management Errors Vulnerability (CVE-2011-4078)
Django Incorrect Regular Expression Vulnerability (CVE-2018-7536)
jQuery Validation Uncontrolled Resource Consumption Vulnerability (CVE-2021-21252)
Oracle JRE CVE-2012-0500 Vulnerability (CVE-2012-0500)
WordPress Plugin BuddyPress Customer.io Analytics Integration Cross-Site Request Forgery (1.1.6)