CVE-2012-5543

2012-12-03T16:55:02
ID CVE-2012-5543
Type cve
Reporter NVD
Modified 2012-12-04T00:00:00

Description

The Feeds module 7.x-2.x before 7.x-2.0-alpha6 for Drupal, when a field is mapped to the node's author, does not properly check permissions, which allows remote attackers to create arbitrary nodes via a crafted source feed.