Drupal » Mailhandler : Security Vulnerabilities, CVEs, CVSS score >= 4
SQL injection vulnerability in the Mailhandler module 5.x before 5.x-1.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to composing queries without using the Drupal database API.
Max CVSS
7.5
EPSS Score
0.25%
Published
2008-09-24
Updated
2017-08-08
1 vulnerabilities found