Unrated severityNVD Advisory· Published Aug 24, 2015· Updated May 6, 2026
CVE-2015-6659
CVE-2015-6659
Description
SQL injection vulnerability in the SQL comment filtering system in the Database API in Drupal 7.x before 7.39 allows remote attackers to execute arbitrary SQL commands via an SQL comment.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- www.drupal.org/SA-CORE-2015-003nvdPatchVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-August/165061.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-September/165690.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-September/165704.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-September/165723.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-September/165733.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-September/165840.htmlnvd
- www.debian.org/security/2015/dsa-3346nvd
- www.securityfocus.com/bid/76432nvd
- www.securitytracker.com/id/1033358nvd
News mentions
0No linked articles in our index yet.