Vulnerability Details CVE-2012-5543
The Feeds module 7.x-2.x before 7.x-2.0-alpha6 for Drupal, when a field is mapped to the node's author, does not properly check permissions, which allows remote attackers to create arbitrary nodes via a crafted source feed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.3%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2012-5543
-
cpe:2.3:a:drupal:drupal:-
-
cpe:2.3:a:feeds_project:feeds:7.x-2.0
-
cpe:2.3:a:feeds_project:feeds:7.x-2.x