CVE-2015-8082 in Login Disable Moduleinfo

Zusammenfassung (Englisch)

The Login Disable module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.2 for Drupal does not properly load the user_logout function, which allows remote attackers to bypass the logout protection mechanism by leveraging a contributed user authentication module, as demonstrated by the CAS and URL Login modules.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

06.11.2015

Veröffentlichung

06.11.2015

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
79094	Login Disable Module user_logout erweiterte Rechte	17	Nicht definiert	Offizieller Fix	CVE-2015-8082

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!