CVE-2012-4554

Опубликовано: 11 нояб. 2012

Источник: debian

EPSS Средний

Описание

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

Пакет	Статус	Версия исправления	Релиз	Тип
drupal7	fixed	7.14-1.1		package
drupal6	not-affected			package

EPSS

Процентиль: 98%

0.56287

Средний

CVE-2012-4554

ubuntu

больше 12 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

CVE-2012-4554

nvd

больше 12 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

GHSA-m4pj-47x5-hq8v

github

около 3 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

EPSS

Процентиль: 98%

0.56287

Средний