The Aggregation module 5.x prior to 5.x-4.4 for Drupal allows remote malicious users to upload files with arbitrary extensions, and possibly execute arbitrary code, via a crafted feed that allows upload of files with arbitrary extensions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal aggregation module 3.2 |
||
drupal aggregation module 4.0 |
||
drupal aggregation module 4.3 |
||
drupal aggregation module 5 |
||
drupal aggregation module 3.0 |
||
drupal aggregation module 3.1 |
||
drupal aggregation module 4.1 |
||
drupal aggregation module 4.2 |