• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Drupal Header image Module Authentication Bypass Vulnerability

The Header image module for Drupal is prone to an authentication-bypass vulnerability due to an unspecified error.

An attacker can exploit this issue to gain unauthorized access to the module's administration pages. This may lead to further attacks.

This issue affects versions prior to Header image 5.x-1.1 for Drupal 5.x. Note that Drupal Core without this module is not affected by this issue.