Drupal is prone to an OS command injection vulnerability that allows attackers to take advantage of an improper validation of user-supplied data in the Form API Ajax Requests.
CVE Link
Exploit Platform
Exploit Type
Product Name