Lucene search
PRIOn knowledge basePRION:CVE-2012-2922HistoryMay 21, 2012 - 10:55 p.m.
Design/Logic Flaw
2012-05-2122:55:00
PRIOn knowledge base
www.prio-n.com
8
The request_path function in includes/bootstrap.inc in Drupal 7.14 and earlier allows remote attackers to obtain sensitive information via the q[] parameter to index.php, which reveals the installation path in an error message.
References
archives.neohapsis.com/archives/bugtraq/2012-05/0052.html
archives.neohapsis.com/archives/bugtraq/2012-05/0053.html
archives.neohapsis.com/archives/bugtraq/2012-05/0055.html
osvdb.org/81817
secunia.com/advisories/49131
www.mandriva.com/security/advisories?name=MDVSA-2013:074
www.openwall.com/lists/oss-security/2012/08/02/8
www.securityfocus.com/bid/53454
exchange.xforce.ibmcloud.com/vulnerabilities/75531
Related
openvas
openvas
Fedora Update for drupal7 FEDORA-2013-2872
2013-03-08 00:00:00
Fedora Update for drupal7 FEDORA-2013-1076
2013-01-31 00:00:00
Fedora Update for drupal7 FEDORA-2013-2872
2013-03-08 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: drupal7-7.20-1.fc17
2013-03-05 23:26:08
[SECURITY] Fedora 16 Update: drupal7-7.14-2.fc16
2012-06-02 03:52:43
[SECURITY] Fedora 29 Update: drupal7-7.64-1.fc29
2019-03-06 06:58:56
ubuntucve
ubuntucve
CVE-2012-2922
2012-05-21 00:00:00
debiancve
debiancve
CVE-2012-2922
2012-05-21 22:55:00
cve
cve
CVE-2012-2922
2012-05-21 22:55:01
nessus
nessus
Fedora 16 : drupal7-7.14-2.fc16 (2012-8362)
2012-06-04 00:00:00
Fedora 15 : drupal7-7.14-2.fc15 (2012-8360)
2012-06-04 00:00:00
Fedora 17 : drupal7-7.14-2.fc17 (2012-8398)
2012-06-04 00:00:00
cvelist
cvelist
CVE-2012-2922
2012-05-21 22:00:00
nvd
nvd
CVE-2012-2922
2012-05-21 22:55:01