escalation, PHP code execution, or other security risks.
Affected scopeDrupal 7.x - 7.31
How to fix
Download and install the official patch.
Upgrade Drupal to 7.32 or later.
...
. Hackers can upload malicious files by using avatar upload or other features to run PHP code on the website.
FixUpgrade QiboCMS to the latest version from the official website. ...