CVE-2014-5267

Опубликовано: 30 сент. 2014

Источник: debian

EPSS Низкий

Описание

modules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to have unspecified impact via a crafted DOCTYPE declaration in an XRDS document.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
drupal7	fixed	7.31-1		package

EPSS

Процентиль: 68%

0.00575

Низкий

Связанные уязвимости

CVE-2014-5267

ubuntu

больше 10 лет назад

modules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to have unspecified impact via a crafted DOCTYPE declaration in an XRDS document.

CVE-2014-5267

nvd

больше 10 лет назад

modules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to have unspecified impact via a crafted DOCTYPE declaration in an XRDS document.

GHSA-7q56-gvfr-6f9w

github

около 3 лет назад

modules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to have unspecified impact via a crafted DOCTYPE declaration in an XRDS document.

EPSS

Процентиль: 68%

0.00575

Низкий