Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2014-0031
HistoryJan 31, 2014 - 8:43 p.m.

Updated drupal package fixes security vulnerabilities

2014-01-3120:43:58
Gentoo Foundation
advisories.mageia.org
17

0.007 Low

EPSS

Percentile

80.0%

JSON

Christian Mainka and Vladislav Mladenov reported a vulnerability in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack their accounts (CVE-2014-1475). Matt Vance and Damien Tournoud reported an access bypass vulnerability in the taxonomy module. Under certain circumstances, unpublished content can appear on listing pages provided by the taxonomy module and will be visible to users who should not have permission to see it (CVE-2014-1476).

OSVersionArchitecturePackageVersionFilename
Mageia3noarchdrupal< 7.26-1drupal-7.26-1.mga3

Related

debian 4
osv 1
drupal 1
openvas 5
nessus 5
securityvulns 2
prion 2
debiancve 2
cvelist 2
ubuntucve 2
cve 2
debian
debian
[SECURITY] [DSA 2847-1] drupal7 security update
2014-01-20 22:40:48
[SECURITY] [DSA 2847-1] drupal7 security update
2014-01-20 22:40:29
[SECURITY] [DSA 2851-1] drupal6 security update
2014-02-02 20:03:49
osv
osv
drupal7 - several
2014-01-20 00:00:00
drupal
drupal
SA-CORE-2014-001 - Drupal core - Multiple vulnerabilities
2014-01-15 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0031)
2022-01-28 00:00:00
Debian Security Advisory DSA 2847-1 (drupal7 - several vulnerabilities)
2014-01-20 00:00:00
Debian: Security Advisory (DSA-2847-1)
2014-01-19 00:00:00
nessus
nessus
Debian DSA-2847-1 : drupal7 - several vulnerabilities
2014-01-21 00:00:00
Drupal 7.x < 7.26 Multiple Vulnerabilities
2014-01-23 00:00:00
Mandriva Linux Security Advisory : drupal (MDVSA-2014:031)
2014-02-16 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2847-1] drupal7 security update
2014-02-03 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2014-02-03 00:00:00
prion
prion
Design/Logic Flaw
2014-01-24 18:55:00
Code injection
2014-01-24 18:55:00
debiancve
debiancve
CVE-2014-1475
2014-01-24 18:55:00
CVE-2014-1476
2014-01-24 18:55:00
cvelist
cvelist
CVE-2014-1475
2014-01-24 18:00:00
CVE-2014-1476
2014-01-24 18:00:00
ubuntucve
ubuntucve
CVE-2014-1475
2014-01-24 00:00:00
CVE-2014-1476
2014-01-24 00:00:00
cve
cve
CVE-2014-1475
2014-01-24 18:55:00
CVE-2014-1476
2014-01-24 18:55:00

0.007 Low

EPSS

Percentile

80.0%

JSON
Related for MGASA-2014-0031
debian4osv1drupal1openvas5nessus5securityvulns2prion2debiancve2cvelist2ubuntucve2cve2