CVE-2008-4793: Drupal Node Validation Bypass in the node module API

May 17, 2022 (updated February 9, 2024)

The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.

References

drupal.org/node/318706
www.openwall.com/lists/oss-security/2008/10/21/7
exchange.xforce.ibmcloud.com/vulnerabilities/45763
github.com/advisories/GHSA-ph2j-5hxq-gxrr
nvd.nist.gov/vuln/detail/CVE-2008-4793
web.archive.org/web/20090302033759/http://secunia.com/advisories/32200

Code Behaviors & Features

Detect and mitigate CVE-2008-4793 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →