Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The _prepopulate_request_walk function in the Prepopulate module 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to modify the (1) actions, (2) container, (3) token, (4) password, (5) password_confirm, (6) text_format, or (7) markup field type, and consequently have unspecified impact, via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Prepopulate模块安全漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。prepopulate是其中的一个预填充字段模块。 Drupal Prepopulate模块7.x-2.1之前7.x-2.x版本的‘_prepopulate_request_walk’函数中存在安全漏洞。远程攻击者可利用该漏洞修改多个(actions,container,token,password,password_confirm,text_format,markup)字段类型。
CVSS Information
N/A
Vulnerability Type
N/A