CVE-2012-5588 in Emailinformazioni

Riassunto

di MITRE

The Email Field module 6.x-1.x before 6.x-1.3 for Drupal, when using a field permission module and the field contact field formatter is set to the full or teaser display mode, does not properly check permissions, which allows remote attackers to email the stored address via unspecified vectors.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

24/10/2012

Divulgazione

26/12/2012

Moderazione

accettato

Voce

VDB-63252

CPE

pronto

CWE

CWE-264 (confermato)

CVSS

3.7 (VulDB)

EPSS

0.01162

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5588
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5588
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5588/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!