[abhishekmdb]

yeah they said drupal 7 was vulnerable to sql injection however it looks bigger http://www.techworm.net/2014/10/drupal-7-vulnerable-sql-inje...

[TacticalMalice]

It is a SQL-injection bug. The consequences of such a bug are pretty grave, and include remote code execution.