4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
62.3%
CVE: CVE-2012-2064
The Views Language Switcher module enables you to provide natively-formatted links that act as Views exposed filters for i18n content being displayed by Views.
The module doesn’t sufficiently filter the path output when a user manually modifies the path and makes a new request.
This vulnerability can be exploited by anonymous users.
Drupal core is not affected. If you do not use the contributed Views Language Switcher module, there is nothing you need to do.
Install the latest version:
See also the Views Language Switcher project page.