CVE-2006-4356

Description

SQL injection vulnerability in Drupal Easylinks Module (easylinks.module) 4.7 before 1.5.2.1 2006/08/19 12:02:27 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

• Drupal / drupal_easylinks_module4.7 – 4.7
• Drupal / drupal_easylinks_module4.7.0 – 4.7.0
• Drupal / drupal_easylinks_module4.7.1 – 4.7.1
• Drupal / drupal_easylinks_module4.7.2 – 4.7.2

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/21603
• MISChttp://www.securityfocus.com/bid/19673
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/3365
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/28527
• MISChttp://drupal.org/node/80087