2 matches found
CVE-2006-5608
CVE-2006-5608: SQL injection in Extended Tracker (xtracker) 4.7 for Drupal, before 1.5.2.1, allows remote attackers to execute arbitrary SQL commands via parameters from URLs. Affected component: xtracker for Drupal; root cause: improper handling of URL parameters leading to SQL injection. Exploi...
CVE-2006-5608
SQL injection vulnerability in Extended Tracker xtracker 4.7 before 1.5.2.1 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to "parameters from URLs."...