Denial of Service Vulnerability in Drupal Multisite Feature

Denial of Service Vulnerability in Drupal Multisite Feature

CVE-2014-5019 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 allows remote attackers to cause a denial of service via a crafted HTTP Host header, related to determining which configuration file to use.

Learn more about our Web Application Penetration Testing UK.