CVE-2016-7405
N/A
N/A
Summary
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LT3WU77BRUJREZUYQ3ZQBMUIVIVIND4Y/
- http://www.openwall.com/lists/oss-security/2016/09/07/8
- http://www.securityfocus.com/bid/92969
- https://github.com/ADOdb/ADOdb/issues/226
- https://security.gentoo.org/glsa/201701-59
- http://www.openwall.com/lists/oss-security/2016/09/15/1
- https://github.com/ADOdb/ADOdb/blob/v5.20.7/docs/changelog.md
- https://github.com/ADOdb/ADOdb/commit/bd9eca9f40220f9918ec3cc7ae9ef422b3e448b8
References
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LT3WU77BRUJREZUYQ3ZQBMUIVIVIND4Y/
- http://www.openwall.com/lists/oss-security/2016/09/07/8
- http://www.securityfocus.com/bid/92969
- https://github.com/ADOdb/ADOdb/issues/226
- https://security.gentoo.org/glsa/201701-59
- http://www.openwall.com/lists/oss-security/2016/09/15/1
- https://github.com/ADOdb/ADOdb/blob/v5.20.7/docs/changelog.md
- https://github.com/ADOdb/ADOdb/commit/bd9eca9f40220f9918ec3cc7ae9ef422b3e448b8
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.