Ubuntu Security Update USN-6825-1: ADOdb vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,872
Reaction score
74
Credits
-1,257
It was discovered that the PDO driver in ADOdb was incorrectly handling string quotes. A remote attacker could possibly use this issue to perform SQL injection attacks. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-7405) It was discovered that ADOdb was incorrectly handling GET parameters in test.php. A remote attacker could possibly use this issue to execute cross-site scripting (XSS) attacks. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-4855) Emmet Leahy discovered that ADOdb was incorrectly handling string quotes in PostgreSQL connections. A remote attacker could possibly use this issue to bypass authentication. (CVE-2021-3850)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8336-1: PHP vulnerabilities
Replies
0
Views
96
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities
Replies
0
Views
69
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8294-1: PostgreSQL vulnerabilities
Replies
0
Views
131
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8337-1: QtSvg vulnerabilities
Replies
0
Views
71
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-2: Unbound vulnerabilities
Replies
0
Views
83
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,548 (members: 2, guests: 2,546)

Latest posts

Top