CVE-2008-4793
Drupal 5.x < 5.11 - Node Validation Bypass via Contributed Modules
Title source: llmDescription
The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.
References (4)
Core 4
Core References
Patch, Vendor Advisory x_refsource_confirm
http://drupal.org/node/318706
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/32200
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45763
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2008/10/21/7
Scores
EPSS
0.0030
EPSS Percentile
53.3%
Details
CWE
CWE-264
Status
published
Products (12)
drupal/drupal
5.0 (5 CPE variants)
drupal/drupal
5.1
drupal/drupal
5.2
drupal/drupal
5.3
drupal/drupal
5.4
drupal/drupal
5.5
drupal/drupal
5.6
drupal/drupal
5.7
drupal/drupal
5.8
drupal/drupal
5.9
... and 2 more
Published
Oct 29, 2008
Tracked Since
Feb 18, 2026