CVE-2015-4389 in Open Graph Importerinformazioni

Riassunto

di MITRE

The Open Graph Importer (og_tag_importer) 7.x-1.x for Drupal does not properly check the create permission for content types created during import, which allows remote authenticated users to bypass intended restrictions by leveraging the "import og_tag_importer" permission.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

05/06/2015

Divulgazione

15/06/2015

Moderazione

accettato

CPE

pronto

EPSS

0.01129

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!