1 results (0.001 seconds)
CVSS: 9.8EPSS: 2%CPEs: 7EXPL: 0
CVSS: 9.8EPSS: 2%CPEs: 7EXPL: 0CVE-2014-5170
https://notcve.org/view.php?id=CVE-2014-5170
The Storage API module 7.x before 7.x-1.6 for Drupal might allow remote attackers to execute arbitrary code by leveraging failure to update .htaccess file contents after SA-CORE-2013-003. El módulo API Storage, en versiones 7.x anteriores a la 7.x-1.6 para Drupal podría permitir que atacantes remotos ejecuten código arbitrario aprovechando el error a la hora de actualizar el contenido del archivo .htaccess tras SA-CORE-2013-003. • http://www.openwall.com/lists/oss-security/2014/07/31/4 https://exchange.xforce.ibmcloud.com/vulnerabilities/95054 https://www.drupal.org/node/2312655 https://www.drupal.org/node/2312769 • CWE-20: Improper Input Validation •