CVE-2012-6065 Information

Description

The OM Maximenu module 6.x-1.43 and earlier for Drupal when the \Title has PHP\ option is enabled allows remote authenticated users with the \Administer OM Maximenu\ permission to execute arbitrary PHP code via a \Link Title\ a different vulnerability than CVE-2012-5553.

Reference

http://drupal.org/node/1834046 http://drupal.org/node/1834048 http://www.madirish.net/551