Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Drupal Geolocation Field allows SQL Injection. This issue affects Geolocation Field versions: from 0.0.0 to 3.15.0.
Problem types
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Product status
Credits
Michael Maturi (michaelmaturi)
Michael Maturi (michaelmaturi)
Christian Adamski (christianadamski)
cilefen (cilefen)
Neil Drumm (drumm)
Greg Knaddison (greggles)
Drew Webber (mcdruid)
Juraj Nemec (poker10)
References
www.drupal.org/sa-contrib-2026-062