Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2015-0253
HistoryJul 01, 2015 - 3:40 p.m.

Updated drupal package fixes security vulnerability

2015-07-0115:40:22
Gentoo Foundation
advisories.mageia.org
5

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.005 Low

EPSS

Percentile

76.5%

JSON

Incorrect cache handling made private content viewed by “user 1” exposed to other, non-privileged users (CVE-2015-3231). A flaw in the Field UI module made it possible for attackers to redirect users to malicious sites (CVE-2015-3232). Due to insufficient URL validation, the Overlay module could be used to redirect users to malicious sites (CVE-2015-3233). The OpenID module allowed an attacker to log in as other users, including administrators (CVE-2015-3234).

OSVersionArchitecturePackageVersionFilename
Mageia4noarchdrupal< 7.38-1drupal-7.38-1.mga4
Mageia5noarchdrupal< 7.38-1drupal-7.38-1.mga5

Related

nessus 7
drupal 4
openvas 5
debian 2
osv 1
freebsd 1
securityvulns 2
fedora 2
ubuntucve 5
debiancve 5
prion 5
cve 5
nessus
nessus
FreeBSD : drupal -- multiple vulnerabilities (d605edb1-1616-11e5-a000-d050996490d0)
2015-06-19 00:00:00
Drupal 7.x < 7.38 Multiple Vulnerabilities
2015-06-19 00:00:00
Fedora 22 : drupal7-7.38-1.fc22 (2015-10290)
2015-07-06 00:00:00
drupal
drupal
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2015-002
2015-06-17 00:00:00
Acquia Cloud Site Factory Connector - Less Critical - Open Redirect - SA-CONTRIB-2015-125
2015-06-17 00:00:00
LABjs - Less Critical - Open Redirect - SA-CONTRIB-2015-124
2015-06-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0253)
2015-10-15 00:00:00
Fedora Update for drupal7 FEDORA-2015-10290
2015-07-07 00:00:00
Debian Security Advisory DSA 3291-1 (drupal7 - security update)
2015-06-18 00:00:00
debian
debian
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
osv
osv
drupal7 - security update
2015-06-18 00:00:00
freebsd
freebsd
drupal -- multiple vulnerabilities
2015-06-17 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-21 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2015-06-21 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: drupal7-7.38-1.fc21
2015-07-02 17:07:30
[SECURITY] Fedora 22 Update: drupal7-7.38-1.fc22
2015-07-02 17:06:37
ubuntucve
ubuntucve
CVE-2015-3233
2015-06-22 00:00:00
CVE-2015-3232
2015-06-22 00:00:00
CVE-2015-3234
2015-06-22 00:00:00
debiancve
debiancve
CVE-2015-3233
2015-06-22 19:59:00
CVE-2015-3232
2015-06-22 19:59:00
CVE-2015-3234
2015-06-22 19:59:00
prion
prion
Open redirect
2015-06-22 19:59:00
Open redirect
2015-06-22 19:59:00
Design/Logic Flaw
2015-06-22 19:59:00
cve
cve
CVE-2015-3233
2015-06-22 19:59:00
CVE-2015-3232
2015-06-22 19:59:00
CVE-2015-3234
2015-06-22 19:59:00

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.005 Low

EPSS

Percentile

76.5%

JSON
Related for MGASA-2015-0253
nessus7drupal4openvas5debian2osv1freebsd1securityvulns2fedora2ubuntucve5debiancve5prion5cve5