Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Improper Input Validation Vulnerability - CVE-2012-5653 - Vulnerability Database
Drupal

Drupal Improper Input Validation Vulnerability - CVE-2012-5653

Medium
Reference: CVE-2012-5653
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-5653
Title: Drupal Improper Input Validation Vulnerability
Overview:

The file upload feature in Drupal 6.x before 6.27 and 7.x before 7.18 allows remote authenticated users to bypass the protection mechanism and execute arbitrary PHP code via a null byte in a file name.