Failure to Update .htaccess File Contents in Storage API Module for Drupal

Failure to Update .htaccess File Contents in Storage API Module for Drupal

CVE-2014-5170 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The Storage API module 7.x before 7.x-1.6 for Drupal might allow remote attackers to execute arbitrary code by leveraging failure to update .htaccess file contents after SA-CORE-2013-003.

Learn more about our Api Penetration Testing.