SQL Injection Vulnerability in Drupal Counter Module Allows Remote Code Execution

SQL Injection Vulnerability in Drupal Counter Module Allows Remote Code Execution

CVE-2012-2718 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the Counter module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to "recording visits."

Learn more about our Web Application Penetration Testing UK.