Denial of Service Vulnerability in Hotblocks Module for Drupal

Denial of Service Vulnerability in Hotblocks Module for Drupal

CVE-2012-5704 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:N/A:P

The Hotblocks module 6.x-1.x before 6.x-1.8 for Drupal allows remote authenticated users with the "administer hotblocks" permission to cause a denial of service (infinite loop and time out) via a block that references itself.

Learn more about our User Device Pen Test.