VWE-2015-1778
Return to current revision
Current Revision
February 16, 2017, 1:15 PM
General Differences
made the following changes
- removed the title prefix 'XSS'
- changed the title from 'Node Overload Vulnerability' to 'VWE-2015-1778'
Differences in Content
-
[template]Vulnerability
| cve=
| aka=Node Overload Vulnerability
| severity=Extreme
| difficulty=Normal
| description=Denial of Service.
| discover-date=November 6, 2015
| patch-date=November 11, 2015
| patches=4.0.7 Patch Level 1
4.0.6 Patch Level 4
4.0.5 Patch Level 4
4.0.4 Patch Level 4
4.0.3 Patch Level 4
4.0.2 Patch Level 7
4.0.1 Patch Level 10
4.0.0 Patch Level 9
4.0.0 RC 5 Patch Level 8
| workaround=In the Wiki Admin Panel, go to Structures > Content Types, and disable the following types:
[list][*]Book
[*]Category
[*]Feed[/list]
[/template]