Lucene search
RedhatCVE-2010-4519HistoryDec 23, 2010 - 6:00 p.m.
CVE-2010-4519
2010-12-2318:00:03
CWE-352
redhat
web.nvd.nist.gov
24
cve-2010-4519
csrf
vulnerabilities
views module
drupal
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.002
Percentile
52.8%
Multiple cross-site request forgery (CSRF) vulnerabilities in the Views UI implementation in the Views module 5.x before 5.x-1.8 and 6.x before 6.x-2.11 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) enable all Views or (2) disable all Views.
Affected configurations
Node
earl_milesviewsMatch5.x-1.0
ORearl_milesviewsMatch5.x-1.1beta
ORearl_milesviewsMatch5.x-1.2beta1
ORearl_milesviewsMatch5.x-1.3beta1
ORearl_milesviewsMatch5.x-1.4rc1
ORearl_milesviewsMatch5.x-1.4-2rc1
ORearl_milesviewsMatch5.x-1.5
ORearl_milesviewsMatch5.x-1.6
ORearl_milesviewsMatch5.x-1.6beta
ORearl_milesviewsMatch5.x-1.6beta2
ORearl_milesviewsMatch5.x-1.6beta3
ORearl_milesviewsMatch5.x-1.6beta4
ORearl_milesviewsMatch5.x-1.6beta5
ORearl_milesviewsMatch5.x-1.7
ORearl_milesviewsMatch5.x-1.xdev
drupaldrupal
Node
earl_milesviewsMatch6.x-2.0
ORearl_milesviewsMatch6.x-2.0alpha1
ORearl_milesviewsMatch6.x-2.0alpha2
ORearl_milesviewsMatch6.x-2.0alpha3
ORearl_milesviewsMatch6.x-2.0alpha4
ORearl_milesviewsMatch6.x-2.0alpha5
ORearl_milesviewsMatch6.x-2.0beta1
ORearl_milesviewsMatch6.x-2.0beta2
ORearl_milesviewsMatch6.x-2.0beta3
ORearl_milesviewsMatch6.x-2.0beta4
ORearl_milesviewsMatch6.x-2.0rc1
ORearl_milesviewsMatch6.x-2.0rc2
ORearl_milesviewsMatch6.x-2.0rc3
ORearl_milesviewsMatch6.x-2.0rc4
ORearl_milesviewsMatch6.x-2.0rc5
ORearl_milesviewsMatch6.x-2.1
ORearl_milesviewsMatch6.x-2.2
ORearl_milesviewsMatch6.x-2.3
ORearl_milesviewsMatch6.x-2.4
ORearl_milesviewsMatch6.x-2.5
ORearl_milesviewsMatch6.x-2.6
ORearl_milesviewsMatch6.x-2.7
ORearl_milesviewsMatch6.x-2.8
ORearl_milesviewsMatch6.x-2.9
ORearl_milesviewsMatch6.x-2.10
ORearl_milesviewsMatch6.x-2.xdev
ORearl_milesviewsMatch6.x-3.0alpha1
ORearl_milesviewsMatch6.x-3.0alpha2
ORearl_milesviewsMatch6.x-3.0alpha3
ORearl_milesviewsMatch6.x-3.xdev
drupaldrupal
| Vendor | Product | Version | CPE |
|---|---|---|---|
| earl_miles | views | 5.x-1.0 | cpe:2.3:a:earl_miles:views:5.x-1.0:*:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.1 | cpe:2.3:a:earl_miles:views:5.x-1.1:beta:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.2 | cpe:2.3:a:earl_miles:views:5.x-1.2:beta1:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.3 | cpe:2.3:a:earl_miles:views:5.x-1.3:beta1:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.4 | cpe:2.3:a:earl_miles:views:5.x-1.4:rc1:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.4-2 | cpe:2.3:a:earl_miles:views:5.x-1.4-2:rc1:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.5 | cpe:2.3:a:earl_miles:views:5.x-1.5:*:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.6 | cpe:2.3:a:earl_miles:views:5.x-1.6:*:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.6 | cpe:2.3:a:earl_miles:views:5.x-1.6:beta:*:*:*:*:*:* |
| earl_miles | views | 5.x-1.6 | cpe:2.3:a:earl_miles:views:5.x-1.6:beta2:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2010-12-23 18:00:00
cvelist
cvelist
CVE-2010-4519
2010-12-23 17:00:00
nvd
nvd
CVE-2010-4519
2010-12-23 18:00:03
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.002
Percentile
52.8%
Related for CVE-2010-4519