CVE-2012-4554
Drupal 7.x < 7.16 - Arbitrary File Read via OpenID Module XRDS DOCTYPE Declaration
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2012-4554.
PoCs published by Reginaldo Silva, juan vazquez, including Metasploit module auxiliary/gather/drupal_openid_xxe.
AI-analyzed exploit summary This Metasploit module exploits an XXE vulnerability in Drupal's OpenID module by crafting a malicious XRDS file to read arbitrary files from the server. It tests for the vulnerability and extracts file contents via XML entity injection.
Description
The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.
Exploits (1)
This Metasploit module exploits an XXE vulnerability in Drupal's OpenID module by crafting a malicious XRDS file to read arbitrary files from the server. It tests for the vulnerability and extracts file contents via XML entity injection.