CVE-2015-4389 in Open Graph Importerinfo

Zusammenfassung

von MITRE

The Open Graph Importer (og_tag_importer) 7.x-1.x for Drupal does not properly check the create permission for content types created during import, which allows remote authenticated users to bypass intended restrictions by leveraging the "import og_tag_importer" permission.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservieren

05.06.2015

Veröffentlichung

15.06.2015

Moderieren

akzeptiert

Eintrag

VDB-75938

CPE

bereit

EPSS

0.01129

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!