ubuntu · CVE-2016-7405

Quick triage

Priority: medium Published: 2016-10-03 18:59:00 UTC Updated: 2025-08-25 22:10:03 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-7405 medium priority: Ubuntu including 1 source packages (libphp-adodb), 20 status rows across 20 suites (artful, bionic, cosmic, disco, eoan, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, precise, trusty, upstream, xenial, yakkety, zesty): not-affected 13, ignored 4, released 2, DNE 1.

Description:

The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting.

cvelogic Threat Intelligence