Lucene search

[email protected]CVE-2008-1977

HistoryApr 27, 2008 - 8:05 p.m.

CVE-2008-1977

2008-04-2720:05:00

CWE-352

[email protected]

web.nvd.nist.gov

cve

2008

1977

csrf

drupal

module

i18n

internationalization

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.9%

JSON

Cross-site request forgery (CSRF) vulnerability in the Internationalization (i18n) Drupal module 5.x before 5.x-2.3 and 5.x-1.1, and 6.x before 6.x-1.0 beta 1, allows remote attackers to change node translation relationships via unspecified vectors.

Affected configurations

NVD

Node

localizer_projectlocalizerMatch5.x-1.0drupal

localizer_projectlocalizerMatch5.x-1.1drupal

localizer_projectlocalizerMatch5.x-1.2drupal

localizer_projectlocalizerMatch5.x-1.3drupal

localizer_projectlocalizerMatch5.x-1.4drupal

localizer_projectlocalizerMatch5.x-1.5drupal

localizer_projectlocalizerMatch5.x-1.6drupal

localizer_projectlocalizerMatch5.x-1.7drupal

localizer_projectlocalizerMatch5.x-1.8drupal

localizer_projectlocalizerMatch5.x-1.9drupal

localizer_projectlocalizerMatch5.x-1.10drupal

localizer_projectlocalizerMatch5.x-1.xdevdrupal

localizer_projectlocalizerMatch5.x-2.xdevdrupal

localizer_projectlocalizerMatch5.x-3.0drupal

localizer_projectlocalizerMatch5.x-3.1drupal

localizer_projectlocalizerMatch5.x-3.2drupal

localizer_projectlocalizerMatch5.x-3.3drupal

Node

internationalization_projectinternationalizationMatch5.x-1.0drupal

internationalization_projectinternationalizationMatch5.x-1.xdevdrupal

internationalization_projectinternationalizationMatch5.x-2.0drupal

internationalization_projectinternationalizationMatch5.x-2.1drupal

internationalization_projectinternationalizationMatch5.x-2.2drupal

internationalization_projectinternationalizationMatch6.x-1.xdevdrupal

CPENameOperatorVersion
localizer_project:localizerlocalizer project localizereq5.x-1.0
localizer_project:localizerlocalizer project localizereq5.x-1.1
localizer_project:localizerlocalizer project localizereq5.x-1.2
localizer_project:localizerlocalizer project localizereq5.x-1.3
localizer_project:localizerlocalizer project localizereq5.x-1.4
localizer_project:localizerlocalizer project localizereq5.x-1.5
localizer_project:localizerlocalizer project localizereq5.x-1.6
localizer_project:localizerlocalizer project localizereq5.x-1.7
localizer_project:localizerlocalizer project localizereq5.x-1.8
localizer_project:localizerlocalizer project localizereq5.x-1.9

CPE	Name	Operator	Version
localizer_project:localizer	localizer project localizer	eq	5.x-1.0
localizer_project:localizer	localizer project localizer	eq	5.x-1.1
localizer_project:localizer	localizer project localizer	eq	5.x-1.2
localizer_project:localizer	localizer project localizer	eq	5.x-1.3
localizer_project:localizer	localizer project localizer	eq	5.x-1.4
localizer_project:localizer	localizer project localizer	eq	5.x-1.5
localizer_project:localizer	localizer project localizer	eq	5.x-1.6
localizer_project:localizer	localizer project localizer	eq	5.x-1.7
localizer_project:localizer	localizer project localizer	eq	5.x-1.8
localizer_project:localizer	localizer project localizer	eq	5.x-1.9

Rows per page:

1-10 of 171

References

drupal.org/node/250344

secunia.com/advisories/29961

www.securityfocus.com/bid/28916

www.vupen.com/english/advisories/2008/1352/references

exchange.xforce.ibmcloud.com/vulnerabilities/41982

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.9%

JSON

Related for CVE-2008-1977

prion1 cvelist1 nvd1