Unrated severityNVD Advisory· Published Jul 25, 2012· Updated Jun 16, 2026
CVE-2012-2306
CVE-2012-2306
Description
SQL injection vulnerability in the Addressbook module for Drupal 6.x-4.2 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- Range: <=6.x-4.2
- osv-coords9 versionspkg:apk/chainguard/drupal-11pkg:apk/chainguard/drupal-11.3pkg:apk/chainguard/drupal-11.3-apache2-configpkg:apk/chainguard/drupal-11.3-compatpkg:apk/chainguard/drupal-11-apache2-configpkg:apk/chainguard/drupal-11-compatpkg:apk/wolfi/drupal-11pkg:apk/wolfi/drupal-11-apache2-configpkg:apk/wolfi/drupal-11-compat
< 0+ 8 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 11.3.2-r1
- (no CPE)range: < 11.3.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.