1 results (0.003 seconds)
CVSS: 8.8EPSS: 1%CPEs: 11EXPL: 0
CVSS: 8.8EPSS: 1%CPEs: 11EXPL: 0CVE-2013-0206
https://notcve.org/view.php?id=CVE-2013-0206
19 Mar 2013 — Unrestricted file upload vulnerability in the Live CSS module 6.x-2.x before 6.x-2.1 and 7.x-2.x before 7.x-2.7 for Drupal allows remote authenticated users with the "administer CSS" permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory. Vulnerabilidad de subida de archivos sin restricciones en el módulo CSS en vivo v6.x-2.x antes v6.x-2.1 y v7.x-2.x antes v7.x-2.7 para Drupal que permite a usuar... • http://drupal.org/node/1883976 •