参照: Official debian advisory, NVD, CVE.org · CVE 詳細
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-7405 not yet assigned priority: Debian including 1 source packages (libphp-adodb), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.