drupal-views

2010-04-12

Page content

Author: Miklos Vajna
Vulnerable: 5.x_1.6-1
Unaffected: 5.x_1.7-1locris1

A vulnerability has been reported in the Views module for Drupal, which can be exploited by malicious users to compromise a vulnerable system. Certain unspecified input is not properly sanitised before being used to import views. This can be exploited to execute arbitrary PHP code. Successful exploitation requires “administer views” permissions.

Bug Tracker URL: http://bugs.frugalware.org/task/4178

CVEs:

No CVE reference, see http://drupal.org/node/765022.