Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-4500

Опубликовано: 13 мая 2014
Источник: nvd
CVSS2: 4.9
EPSS Низкий

Описание

The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the "view any quiz results" or "view results for own quiz" permission to delete arbitrary results via the delete option.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:-:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:alpha1:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:alpha2:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:alpha3:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:alpha4:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:alpha5:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta1:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta2:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta3:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta4:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta5:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta6:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta7:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:beta8:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:dev:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc1:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc10:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc2:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc3:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc4:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc5:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc6:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc7:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc8:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0:rc9:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.1:*:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.2:*:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.3:*:*:*:*:drupal:*:*
cpe:2.3:a:quiz_module_project:quiz:6.x-4.4:*:*:*:*:drupal:*:*

EPSS

Процентиль: 61%
0.00413
Низкий

4.9 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

github логотип

GHSA-gq3f-55qh-j3xm

github
больше 3 лет назад

The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the "view any quiz results" or "view results for own quiz" permission to delete arbitrary results via the delete option.

EPSS

Процентиль: 61%
0.00413
Низкий

4.9 Medium

CVSS2

Дефекты

CWE-264