Skip to main content

Drupal 7 Driver For Sql Server And Sql Azure

1 CVEs product

Monthly

CVE-2015-7876 HIGH PATCH This Week

The escapeLike function in sqlsrv/database.inc in the Drupal 7 driver for SQL Server and SQL Azure 7.x-1.x before 7.x-1.4 does not properly escape certain characters, which allows remote attackers to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Microsoft Drupal 7 Driver For Sql Server And Sql Azure
NVD
CVSS 2.0
7.5
EPSS
0.6%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

The escapeLike function in sqlsrv/database.inc in the Drupal 7 driver for SQL Server and SQL Azure 7.x-1.x before 7.x-1.4 does not properly escape certain characters, which allows remote attackers to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Microsoft Drupal 7 Driver For Sql Server And Sql Azure
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy