Lucene search

K

RedhatCVELIST:CVE-2012-1626

HistorySep 20, 2012 - 1:00 a.m.

CVE-2012-1626

2012-09-2001:00:00

redhat

www.cve.org

7.9 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.7%

SQL injection vulnerability in the conversion form for Events in the Date module 6.x-2.x before 6.x-2.8 for Drupal allows remote authenticated users with the “administer Date Tools” privilege to execute arbitrary SQL commands via unspecified vectors.

References

drupal.org/node/1401026

drupal.org/node/1401434

osvdb.org/78261

secunia.com/advisories/47533

www.openwall.com/lists/oss-security/2012/04/07/1

www.securityfocus.com/bid/51378

exchange.xforce.ibmcloud.com/vulnerabilities/72356

7.9 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.7%

Related for CVELIST:CVE-2012-1626

nvd1 cve1 drupal1 prion1