Back to search
CVE-2012-5654
Published: Jan 3, 2013
Modified: Sep 16, 2024
PUBLISHED
Description
The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when configured to automatically generate description meta tags from node text, does not properly filter node content when creating tags, which might allow remote attackers to obtain sensitive information by reading the (1) description, (2) dc.description or (3) og:description meta tags.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://drupal.org/node/1859208
x_refsource_CONFIRM
http://drupal.org/node/1859282
x_refsource_MISC
[oss-security] 20121219 Re: CVE request for Drupal core, and contributed modules
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now