7.8

CVE-2007-3690

The Forward module before 4.7-1.1 and 5.x before 5.x-1.0 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DrupalForward Module Version <= 4.7
DrupalForward Module Version <= 5.x-1.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.78% 0.754
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:C/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.securityfocus.com/bid/24862
http://drupal.org/node/152806
Patch
http://drupal.org/node/158022
Patch
http://drupal.org/node/158025
Patch
http://osvdb.org/37896
http://secunia.com/advisories/25999
http://www.vupen.com/english/advisories/2007/2469
https://exchange.xforce.ibmcloud.com/vulnerabilities/35318