CVE-2006-4108

Description

SQL injection vulnerability in Bibliography (biblio.module) 4.6 before revision 1.1.1.1.4.11 and 4.7 before revision 1.13.2.5 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

Drupal / bibliography_module4.5

References

VENDOR_ADVISORYhttp://secunia.com/advisories/21435
VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/3227
MISChttp://drupal.org/node/77756
MISChttp://www.securityfocus.com/bid/19441
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/28296