Description
Drupal 7.x before 7.16 allows remote attackers to obtain sensitive information and possibly re-install Drupal and execute arbitrary PHP code via an external database server, related to "transient conditions."
Remediation
References
Related Vulnerabilities
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-2748)
WordPress Plugin Our Team Showcase Cross-Site Request Forgery (1.2)
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0)
WordPress Plugin WP Reroute Email Cross-Site Scripting (1.4.9)