CVE

CVE-2017-6920

CVE-2017-6920

Drupal core 8 before versions 8.3.4 allows remote attackers to execute arbitrary code due to the PECL YAML parser not handling PHP objects safely during certain operations.

Source: CVE-2017-6920

Exit mobile version