CiviCRM 'civicrm_api3_contact_quicksearch()' Multiple SQL Injection Vulnerabilities

Bugtraq ID: 63977
Class: Input Validation Error
CVE: CVE-2013-4662
Remote: Yes
Local: No
Published: Jun 05 2013 12:00AM
Updated: Jun 05 2013 12:00AM
Credit: Tim Otten and Coleman Watts
Vulnerable: CiviCRM CiviCRM 4.3.3
CiviCRM CiviCRM 4.3.2
CiviCRM CiviCRM 4.3.1
CiviCRM CiviCRM 4.3
CiviCRM CiviCRM 4.2.9
CiviCRM CiviCRM 4.2.8
CiviCRM CiviCRM 4.2.7
CiviCRM CiviCRM 4.2.4
CiviCRM CiviCRM 4.2.3
CiviCRM CiviCRM 4.2.2
CiviCRM CiviCRM 4.2.1
CiviCRM CiviCRM 4.2
CiviCRM CiviCRM 4.2.6
CiviCRM CiviCRM 4.2.5
Not Vulnerable: CiviCRM CiviCRM 4.3.4
CiviCRM CiviCRM 4.2.10


 

Privacy Statement
Copyright 2010, SecurityFocus