Comment 3 for bug 181984
Revision history for this message
| Stephan RĂ¼gamer (sruegamer) wrote Re: Drupal5: SA-2007-031: SQL Injection possible when certain contributed modules are enabled | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
7020100
(Get the code!)
Hi Emanuele,
I checked the diff and found that the security patch from drupal is not fixed (see http://
would you fix this too and add the new security fixes SA-2008-0005 and SA-2008-0006 to the gutsy and feisty package?
SA-2008-0007 is just an advisory to disable register_globals in your local php/apache configuration ;)