CVE-2012-5653

medium

Published 2013-01-03 · Modified 2026-04-29

CVSS v3

—

CVSS v2

6.0

VIR risk

6.0

Description

The file upload feature in Drupal 6.x before 6.27 and 7.x before 7.18 allows remote authenticated users to bypass the protection mechanism and execute arbitrary PHP code via a null byte in a file name.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://drupalcode.org/project/drupal.git/commitdiff/da8023a

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://drupalcode.org/project/drupal.git/commitdiff/b47f95d

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://drupal.org/SA-CORE-2012-004

OS impact

OS	Version	Status	Fixed in
debian	6.0	affected
debian	7.0	affected

Application impact

Vendor	Product	Versions
drupal	drupal	`7.0`
drupal	drupal	`7.1`
drupal	drupal	`7.2`
drupal	drupal	`7.3`
drupal	drupal	`7.4`
drupal	drupal	`7.5`
drupal	drupal	`7.6`
drupal	drupal	`7.7`
drupal	drupal	`7.8`
drupal	drupal	`7.9`
drupal	drupal	`7.10`
drupal	drupal	`7.11`
drupal	drupal	`7.12`
drupal	drupal	`7.13`
drupal	drupal	`7.14`
drupal	drupal	`7.15`
drupal	drupal	`7.16`
drupal	drupal	`7.17`
drupal	drupal	`7.x-dev`
drupal	drupal	`6.0`
drupal	drupal	`6.1`
drupal	drupal	`6.2`
drupal	drupal	`6.3`
drupal	drupal	`6.4`
drupal	drupal	`6.5`
drupal	drupal	`6.6`
drupal	drupal	`6.7`
drupal	drupal	`6.8`
drupal	drupal	`6.9`
drupal	drupal	`6.10`
drupal	drupal	`6.11`
drupal	drupal	`6.12`
drupal	drupal	`6.13`
drupal	drupal	`6.14`
drupal	drupal	`6.15`
drupal	drupal	`6.16`
drupal	drupal	`6.17`
drupal	drupal	`6.18`
drupal	drupal	`6.19`
drupal	drupal	`6.20`
drupal	drupal	`6.21`
drupal	drupal	`6.22`
drupal	drupal	`6.23`
drupal	drupal	`6.24`
drupal	drupal	`6.25`
drupal	drupal	`6.26`

References

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.