CVE-2013-4445 in Context情報

要約

〜によって MITRE

The json rendering functionality in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal uses Drupal s token scheme to restrict access to blocks, which makes it easier for remote authenticated users to guess the access token for a block by leveraging the token from a block to which the user has access.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

予約する

2013年06月12日

モデレーション

承諾済み

エントリ

VDB-65659

EPSS

0.01569

アクティビティ

非常低い

ソース

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!