Unrated severityNVD Advisory· Published Sep 16, 2010· Updated Jun 16, 2026
CVE-2010-3423
CVE-2010-3423
Description
SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execute arbitrary SQL commands via the sorting method.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:freka:yr_verdata:6.x-1.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:freka:yr_verdata:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.1:*:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.4:*:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:*:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:beta1:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:beta2:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:rc2:*:*:*:*:*:*
- cpe:2.3:a:freka:yr_verdata:6.x-1.5:rc3:*:*:*:*:*:*
- Range: <=6.x-1.5
Patches
Vulnerability mechanics
References
5- drupal.org/node/606290nvdPatch
- drupal.org/node/905686nvdPatchVendor Advisory
- secunia.com/advisories/41385nvdVendor Advisory
- www.osvdb.org/67918nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/61673nvd
News mentions
0No linked articles in our index yet.