5.8
CVE-2013-7067
- EPSS 1.22%
- Veröffentlicht 19.12.2013 04:24:57
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe OG Features module 6.x-1.x before 6.x-1.4 for Drupal does not properly override pages that have an access callback set to false, which allows remote attackers to bypass intended access restrictions via a request.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mike Stefanello ≫ Og Features Version6.x-1.0
Mike Stefanello ≫ Og Features Version6.x-1.0 Updatebeta1
Mike Stefanello ≫ Og Features Version6.x-1.0 Updatebeta2
Mike Stefanello ≫ Og Features Version6.x-1.0 Updatebeta3
Mike Stefanello ≫ Og Features Version6.x-1.0 Updatebeta4
Mike Stefanello ≫ Og Features Version6.x-1.1
Mike Stefanello ≫ Og Features Version6.x-1.2
Mike Stefanello ≫ Og Features Version6.x-1.3
Mike Stefanello ≫ Og Features Version6.x-1.x Updatedev
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.22% | 0.647 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|
http://osvdb.org/100611
http://www.securityfocus.com/bid/64134
https://drupal.org/node/2149743
https://drupal.org/node/2149791
https://exchange.xforce.ibmcloud.com/vulnerabilities/89458