CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kristof De Jaeger: >> Bundle Copy Security Vulnerabilities

CVE-2012-2073

The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permissions to execute arbitrary PHP code via unspecified vectors.

CVSS Score

6.0

EPSS Score

0.009

Published

2012-08-14

Page 1

Vulnerabilities

Vulnerable Software

Kristof De Jaeger: >> Bundle Copy Security Vulnerabilities

Products

Pricing

Contact Us