Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Views Dynamic Fields 代码问题漏洞
Vulnerability Description
Drupal是Drupal社区的一套使用PHP语言开发的开源内容管理系统。Views Dynamic Fields是使用在其中的一个字段过滤显示模块。 Drupal Views Dynamic Fields 7.x-1.0-alpha4及之前版本(用于Drupal)中存在安全漏洞。攻击者可利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A