2 matches found
CVE-2012-2306
SQL injection vulnerability in the Addressbook module for Drupal 6.x-4.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2012-2306
The CVE-2012-2306 entry concerns the Drupal Addressbook contributed module, affected in 6.x-4.2 and earlier. The root cause is a SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Impact is described as potential partial confidentia...