Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-5593 - Vulnerability Database
Drupal

Drupal Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-5593

Medium
Reference: CVE-2007-5593
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-5593
Title: Drupal Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

install.php in Drupal 5.x before 5.3 when the configured database server is not reachable allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.