5
CVE-2012-5651
- EPSS 2.75%
- Veröffentlicht 03.01.2013 01:55:03
- Zuletzt bearbeitet 16.06.2026 23:47:11
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.75% | 0.843 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://www.mandriva.com/security/advisories?name=MDVSA-2013:074
http://drupal.org/SA-CORE-2012-004
http://drupalcode.org/project/drupal.git/commitdiff/b47f95d
http://drupalcode.org/project/drupal.git/commitdiff/da8023a
http://www.debian.org/security/2013/dsa-2776
http://www.openwall.com/lists/oss-security/2012/12/20/1
http://www.osvdb.org/88528
http://www.securityfocus.com/bid/56993
https://exchange.xforce.ibmcloud.com/vulnerabilities/80792