CVE-2013-1925 in Drupalinfo

Zusammenfassung

von MITRE

The Chaos Tool Suite (ctools) module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict node access, which allows remote authenticated users with the "access content" permission to read restricted node titles via an autocomplete list.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

19.02.2013

Veröffentlichung

16.07.2013

Moderieren

akzeptiert

Eintrag

VDB-64483

CPE

bereit

CWE

CWE-264 (bestätigt)

CVSS

3.5 (NVD)

EPSS

0.00428

KEV

nein

Aktivitäten

very low

Sektor

Agriculture, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2013-1925
NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-1925
CVE Details	https://www.cvedetails.com/cve/CVE-2013-1925/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!