Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-9449

Опубликовано: 25 нояб. 2016
Источник: debian
EPSS Низкий

Описание

The taxonomy module in Drupal 7.x before 7.52 and 8.x before 8.2.3 might allow remote authenticated users to obtain sensitive information about taxonomy terms by leveraging inconsistent naming of access query tags.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
drupal8itppackage
drupal7fixed7.52-1package

Примечания

  • https://www.drupal.org/SA-CORE-2016-005

  • https://www.openwall.com/lists/oss-security/2016/11/18/8

EPSS

Процентиль: 44%
0.00215
Низкий

Связанные уязвимости

CVSS3: 4.3
ubuntu
около 9 лет назад

The taxonomy module in Drupal 7.x before 7.52 and 8.x before 8.2.3 might allow remote authenticated users to obtain sensitive information about taxonomy terms by leveraging inconsistent naming of access query tags.

CVSS3: 4.3
nvd
около 9 лет назад

The taxonomy module in Drupal 7.x before 7.52 and 8.x before 8.2.3 might allow remote authenticated users to obtain sensitive information about taxonomy terms by leveraging inconsistent naming of access query tags.

CVSS3: 4.3
github
больше 3 лет назад

Drupal sensitive information disclosure

EPSS

Процентиль: 44%
0.00215
Низкий