Total vulnerabilities in the database
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_check_hostname.
| Software | From | Fixed in |
|---|---|---|
| lighttpd / lighttpd | - | 1.4.35 |
| debian / debian_linux | 8.0 | 8.0.x |
| debian / debian_linux | 7.0 | 7.0.x |
| debian / debian_linux | 6.0 | 6.0.x |
| opensuse / opensuse | 12.3 | 12.3.x |
| suse / linux_enterprise_software_development_kit | 11-sp3 | 11-sp3.x |
| opensuse / opensuse | 11.4 | 11.4.x |
| opensuse / opensuse | 13.1 | 13.1.x |
| suse / linux_enterprise_high_availability_extension | 11-sp3 | 11-sp3.x |