Описание
install.php in Drupal 5.x before 5.3, when the configured database server is not reachable, allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 5.5-1ubuntu1 |
| edgy | DNE | |
| feisty | DNE | |
| gutsy | released | 5.2-2ubuntu2.1 |
| upstream | released | 5.3 |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 84%
0.02349
Низкий
6.8 Medium
CVSS2
Связанные уязвимости
nvd
почти 18 лет назад
install.php in Drupal 5.x before 5.3, when the configured database server is not reachable, allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.
debian
почти 18 лет назад
install.php in Drupal 5.x before 5.3, when the configured database ser ...
github
больше 3 лет назад
install.php in Drupal 5.x before 5.3, when the configured database server is not reachable, allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.
EPSS
Процентиль: 84%
0.02349
Низкий
6.8 Medium
CVSS2