Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2014/04/29 2:38 p.m.28 views

CVE-2013-7065

The Organic Groups OG module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to bypass access restrictions and post to arbitrary groups via a group audience field, as demonstrated by the oggroupref field...

5.8CVSS6AI score0.01218EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/04/29 2:0 p.m.25 views

CVE-2013-7065

The Organic Groups OG module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to bypass access restrictions and post to arbitrary groups via a group audience field, as demonstrated by the oggroupref field...

6.8AI score0.01218EPSS
Exploits0References4
CVE
CVE
added 2014/04/29 2:0 p.m.46 views

CVE-2013-7065

The CVE concerns the Drupal Organic Groups (OG) module for Drupal 7.x-2.x, specifically versions prior to 7.x-2.3. The vulnerability allows remote attackers to bypass access restrictions and post to arbitrary groups using the og_group_ref field, enabling group-wide content posting beyond intended...

5.8CVSS7AI score0.01218EPSS
Exploits0References4Affected Software1
Drupal
Drupal
added 2013/11/20 12:0 a.m.23 views

SA-CONTRIB-2013-095 - Organic Groups - Access bypass

Two issues exist within entity references and permissions relating to OG, allowing users potential access bypass. Posting content into groups where a user is not a member Organic Groups does not sufficiently check the group audience fields e.g. oggroupref field from being populated with invalid...

5.8CVSS6AI score0.01218EPSS
Exploits0References13
Rows per page
Query Builder