Описание
The Mollom module 6.x-2.7 before 6.x-2.15 for Drupal allows remote attackers to bypass intended access restrictions and modify the mollom blacklist via unspecified vectors.
Ссылки
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:acquia:mollom:6.x-2.7:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.8:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.9:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.10:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.11:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.12:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.13:*:*:*:*:drupal:*:*
cpe:2.3:a:acquia:mollom:6.x-2.14:*:*:*:*:drupal:*:*
EPSS
Процентиль: 59%
0.00382
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
The Mollom module 6.x-2.7 before 6.x-2.15 for Drupal allows remote attackers to bypass intended access restrictions and modify the mollom blacklist via unspecified vectors.
EPSS
Процентиль: 59%
0.00382
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-264