5
CVE-2008-0275
- EPSS 1.06%
- Veröffentlicht 15.01.2008 20:00:00
- Zuletzt bearbeitet 16.06.2026 22:49:18
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Atom 4.7 before 4.7.x-1.0 and 5.x before 5.x-1.0 module for Drupal does not properly manage permissions for node (1) titles, (2) teasers, and (3) bodies, which might allow remote attackers to gain access to syndicated content.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Drupal ≫ Atom Module Version <= 4.7
Drupal ≫ Atom Module Version <= 5.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.06% | 0.602 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://drupal.org/node/208527
https://exchange.xforce.ibmcloud.com/vulnerabilities/39607