CVE-2012-5543

Name of the Vulnerable Software and Affected Versions Drupal Feeds module versions 7.x-2.x before 7.x-2.0-alpha6

Description The issue allows remote attackers to create arbitrary nodes via a crafted source feed when a field is mapped to the node's author, due to improper permission checks.

Recommendations For versions prior to 7.x-2.0-alpha6, update to version 7.x-2.0-alpha6 or later to resolve the issue.