CVE-2011-2688

EPSS 7.3%

libapache2-mod-authnz-external - SQL injection

發布日:2011/7/28修改日:2026/4/28

描述

SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.

受影響套件(2)

Debian/libapache2-mod-authnz-externalfrom 0, < 3.2.4-2.1
Debian/libapache2-mod-authnz-externalfrom 0, < 3.2.4-2+squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2688