2 matches found
CVE-2014-5249
SQL injection vulnerability in the "Biblio self autocomplete" submodule in the Biblio Autocomplete module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2014-5249
The vulnerability CVE-2014-5249 affects the Drupal Biblio Autocomplete module, specifically the submodule Biblio self autocomplete in versions 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5. The root cause is insufficient sanitization of user input in the Biblio self autocomplete submodule, wh...