Drupal : Security Vulnerabilities, CVEs, Published In 2012
CVE-2012-4554
Public exploit
The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.
Max CVSS
5.0
EPSS Score
16.94%
Published
2012-11-11
Updated
2012-11-12
1 vulnerabilities found