Daniel Honrade : Security Vulnerabilities, CVEs, CVSS score >= 3
The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, allows remote authenticated users with the "Administer OM Maximenu" permission to execute arbitrary PHP code via a "Link Title," a different vulnerability than CVE-2012-5553.
Max CVSS
4.6
EPSS Score
0.32%
Published
2012-12-03
Updated
2012-12-04
1 vulnerabilities found