Lucene search
GoogleOSV:DSA-3051-1HistoryOct 15, 2014 - 12:00 a.m.
drupal7 - security update
2014-10-1500:00:00
Google
osv.dev
11
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Stefan Horst discovered a vulnerability in the Drupal database
abstraction API, which may result in SQL injection.
For the stable distribution (wheezy), this problem has been fixed in
version 7.14-2+deb7u7.
For the unstable distribution (sid), this problem has been fixed in
version 7.32-1.
We recommend that you upgrade your drupal7 packages.
References
Related
packetstorm
packetstorm
Drupal HTTP Parameter Key/Value SQL Injection
2014-10-18 00:00:00
Drupal Core 7.32 SQL Injection
2014-10-17 00:00:00
Drupal 7.X SQL Injection
2014-10-16 00:00:00
cisa
cisa
Drupal Releases Security Advisory
2014-10-17 00:00:00
openvas
openvas
Debian Security Advisory DSA 3051-1 (drupal7 - security update)
2014-10-15 00:00:00
Fedora Update for drupal7 FEDORA-2014-13053
2014-10-29 00:00:00
Drupal Core SQLi Vulnerability (SA-CORE-2014-005) - Active Check
2014-10-30 00:00:00
archlinux
archlinux
drupal: pre-auth sql injection
2014-10-16 00:00:00
zdt
zdt
Drupal 7.0 < 7.31 - Drupalgeddon SQL Injection (Admin Session) Exploit
2018-03-29 00:00:00
Drupal HTTP Parameter Key/Value SQL Injection Vulnerability
2014-10-18 00:00:00
Drupal < 7.32 Pre Auth SQL Injection Vulnerability
2014-11-04 00:00:00
debian
debian
[SECURITY] [DSA 3051-1] drupal7 security update
2014-10-15 18:37:33
[BSA-098] Security update for drupal7
2014-10-17 16:55:02
mageia
mageia
Updated drupal packages fix security vulnerability
2014-10-26 00:23:09
debiancve
debiancve
CVE-2014-3704
2014-10-16 00:55:00
nessus
nessus
Fedora 19 : drupal7-7.32-1.fc19 (2014-13053)
2014-10-29 00:00:00
Fedora 21 : drupal7-7.32-1.fc21 (2014-12934)
2014-11-03 00:00:00
Drupal Database Abstraction API SQLi
2014-10-16 00:00:00
checkpoint_advisories
checkpoint_advisories
SQL Servers Unauthorized Commands SQL Injection - Ver2 (CVE-2014-3704)
2015-03-26 00:00:00
hackerone
hackerone
fedora
fedora
[SECURITY] Fedora 21 Update: drupal7-7.32-1.fc21
2014-11-01 17:17:24
[SECURITY] Fedora 19 Update: drupal7-7.32-1.fc19
2014-10-28 06:38:09
[SECURITY] Fedora 20 Update: drupal7-7.32-1.fc20
2014-10-28 06:48:09
exploitpack
exploitpack
Drupal 7.0 7.31 - Drupalgeddon SQL Injection (PoC) (Reset Password) (2)
2014-10-17 00:00:00
Drupal 7.0 7.31 - Drupalgeddon SQL Injection (Add Admin User)
2014-10-17 00:00:00
metasploit
metasploit
Drupal HTTP Parameter Key/Value SQL Injection
2014-10-16 17:32:39
seebug
seebug
Drupal Core <= 7.32 - SQL Injection (PHP)
2014-11-13 00:00:00
Drupal Core <= 7.32 - SQL Injection (#2)
2014-11-13 00:00:00
canvas
canvas
Immunity Canvas: DRUPAL_NAME_SQLI_CALLBACK
2014-10-15 20:55:06
Immunity Canvas: DRUPAL_NAME_SQLI
2014-10-15 20:55:06
dsquare
dsquare
Drupal core 7.x SQL Injection
2015-04-22 00:00:00
securityvulns
securityvulns
Advisory 01/2014: Drupal7 - pre Auth SQL Injection Vulnerability
2014-10-17 00:00:00
[ MDVSA-2015:181 ] drupal
2015-05-12 00:00:00
freebsd
freebsd
drupal7 -- SQL injection
2014-10-15 00:00:00
nuclei
nuclei
Drupal SQL Injection
2021-04-07 12:22:53
ubuntucve
ubuntucve
CVE-2014-3704
2014-10-16 00:00:00
prion
prion
Sql injection
2014-10-16 00:55:00
f5
f5
SOL15782 - SQL injection vulnerability CVE-2014-3704
2014-11-03 00:00:00
K15782 : SQL injection vulnerability CVE-2014-3704
2014-11-03 00:00:00
drupal
drupal
SA-CORE-2014-005 - Drupal core - SQL injection
2014-10-15 00:00:00
cve
cve
CVE-2014-3704
2014-10-16 00:55:00
exploitdb
exploitdb
nmap
nmap
http-vuln-cve2014-3704 NSE Script
2015-12-14 21:29:30
kitploit
kitploit
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for OSV:DSA-3051-1