Design/Logic Flaw

2014-11-1216:55:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.6%

JSON

The Organic Groups Menu (aka OG Menu) module before 7.x-2.2 for Drupal allows remote authenticated users with the “access administration pages” permission to change module settings via unspecified vectors.

CPENameOperatorVersion
organic_groups_menueq<= 7.x-2.1
organic_groups_menueq7.120.20
organic_groups_menueq7.0.0-x2-xdev

Name	Operator	Version
organic_groups_menu	eq	<= 7.x-2.1
organic_groups_menu	eq	7.120.20
organic_groups_menu	eq	7.0.0-x2-xdev

References

exchange.xforce.ibmcloud.com/vulnerabilities/98445

www.drupal.org/node/2365259

www.drupal.org/node/2365685