Vulnerabilities

CVE-2012-6065

by Fred · 03/12/2012

The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, allows remote authenticated users with the "Administer OM Maximenu" permission to execute arbitrary PHP code via a "Link Title," a different vulnerability than CVE-2012-5553.

Date published : 2012-12-03

http://drupal.org/node/1834046

http://drupal.org/node/1834048

Related

Tags: Cybersecurity Alert