The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.
https://exchange.xforce.ibmcloud.com/vulnerabilities/45763
http://www.openwall.com/lists/oss-security/2008/10/21/7