Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-9152
HistoryOct 03, 2022 - 4:20 p.m.

CVE-2014-9152

2022-10-0316:20:41
mitre
www.cve.org
drupal
services module
remote attackers
passwords
brute force attack

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.8%

JSON

The _user_resource_create function in the Services module 7.x-3.x before 7.x-3.10 for Drupal uses a password of 1 when creating new user accounts, which makes it easier for remote attackers to guess the password via a brute force attack.

Related

cve 1
prion 1
nvd 1
drupal 1
cve
cve
CVE-2014-9152
2022-10-03 16:20:41
prion
prion
Default credentials
2014-12-01 16:59:00
nvd
nvd
CVE-2014-9152
2014-12-01 16:59:02
drupal
drupal
SA-CONTRIB-2014-092 - Services - Cross Site Scripting, Access bypass
2014-09-24 00:00:00

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.8%

JSON
Related for CVELIST:CVE-2014-9152
cve1prion1nvd1drupal1