CVE-2014-5019
The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 allows remote attackers to cause a denial of service via a crafted HTTP Host header, related to determining which configuration file to use.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0037 (0.4%)
Percentil: 59.1%
EPSS: 2026-05-06
Afecta
drupal:drupalDescripción técnica
The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 allows remote attackers to cause a denial of service via a crafted HTTP Host header, related to determining which configuration file to use.
Publicada: 22/7/2014, 14:55:10
Última modificación: 6/5/2026, 22:30:45