Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2016-7570HistoryOct 03, 2016 - 6:59 p.m.
CVE-2016-7570
2016-10-0318:59:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.001 Low
EPSS
Percentile
42.1%
Drupal 8.x before 8.1.10 does not properly check for “Administer comments” permission, which allows remote authenticated users to set the visibility of comments for arbitrary nodes by leveraging rights to edit those nodes.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | drupal7 | < 7.52-2+deb9u11 | drupal7_7.52-2+deb9u11_all.deb |
Related
cve
cve
CVE-2016-7570
2016-10-03 18:59:15
cvelist
cvelist
CVE-2016-7570
2016-10-03 18:00:00
nvd
nvd
CVE-2016-7570
2016-10-03 18:59:15
github
github
ubuntucve
ubuntucve
CVE-2016-7570
2016-10-03 00:00:00
prion
prion
Code injection
2016-10-03 18:59:00
osv
osv
friendsofphp
friendsofphp
openvas
openvas
Drupal Multiple Vulnerabilities (SA-CORE-2016-004) - Linux
2016-10-07 00:00:00
Drupal Multiple Vulnerabilities (SA-CORE-2016-004) - Windows
2016-10-07 00:00:00
drupal
drupal
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2016-004
2016-09-21 00:00:00
nessus
nessus
Drupal 8.2.x < 8.2.0-rc2 Multiple Vulnerabilities
2018-11-05 00:00:00
Drupal 8.1.x < 8.1.10 Multiple Vulnerabilities
2016-10-28 00:00:00
Drupal 8.x < 8.1.10 Multiple Vulnerabilities
2018-11-05 00:00:00