Lucene search

[email protected]NVD:CVE-2007-3690

HistoryJul 11, 2007 - 5:30 p.m.

CVE-2007-3690

2007-07-1117:30:00

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.7%

JSON

The Forward module before 4.7-1.1 and 5.x before 5.x-1.0 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.

Affected configurations

NVD

Node

drupalforward_moduleRange≤4.7

drupalforward_moduleRange≤5.x-1.1

References

drupal.org/node/152806

drupal.org/node/158022

drupal.org/node/158025

osvdb.org/37896

secunia.com/advisories/25999

www.securityfocus.com/bid/24862

www.vupen.com/english/advisories/2007/2469

exchange.xforce.ibmcloud.com/vulnerabilities/35318

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.7%

JSON

Related for NVD:CVE-2007-3690

prion1 cvelist1 cve1