CVE-2008-6136

Опубликовано: 14 фев. 2009

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Unspecified vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to gain privileges as another user or an administrator via unknown attack vectors.

Ссылки

http://drupal.org/node/318746
Vendor Advisory
http://secunia.com/advisories/32194
Vendor Advisory
http://www.securityfocus.com/bid/31656
https://exchange.xforce.ibmcloud.com/vulnerabilities/45760
http://drupal.org/node/318746
Vendor Advisory
http://secunia.com/advisories/32194
Vendor Advisory
http://www.securityfocus.com/bid/31656
https://exchange.xforce.ibmcloud.com/vulnerabilities/45760

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:drupal:everyblog:5.0:*:*:*:*:*:*:*

cpe:2.3:a:drupal:everyblog:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00585

Низкий

7.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-65vx-v7m3-pxhh

github

больше 3 лет назад