CVE 2014-2323
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MLIST: [oss-security] 2014031...
- MLIST: [oss-security] 2014031...
- CONFIRM: http://download.lightt...
- CONFIRM: http://www.lighttpd.ne...
- DEBIAN: DSA-2877
- SECUNIA: 57404
- SUSE: openSUSE-SU-2014:0449
- SECUNIA: 57514
- SUSE: SUSE-SU-2014:0474
- SUSE: openSUSE-SU-2014:0496
- HP: HPSBGN03191
- JVN: JVN#37417423
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)