Description

Unspecified vulnerability in Drupal before 4.6.11, and 4.7 before 4.7.5, when MySQL is used, allows remote authenticated users to cause a denial of service by poisoning the page cache via unspecified vectors, which triggers erroneous 404 HTTP errors for pages that exist.

Remediation

References

CVE-2007-0124

Related Vulnerabilities

EspoCRM Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2022-38844)

WordPress Plugin s2Member Framework 's2_invoice' Parameter Remote Security Bypass (111105)

WordPress Plugin Testimonial Rotator Cross-Site Scripting (3.0.3)

WordPress Plugin MapSVG Lite Arbitrary File Upload (4.2.4)

Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517)

Severity

Low

Classification

CVE-2007-0124

Tags

Missing Update Known Vulnerabilities