Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:24 a.m.7 views

CVE-2014-8735

The Bad Behavior module 6.x-2.x before 6.x-2.2216 and 7.x-2.x before 7.x-2.2216 for Drupal logs usernames and passwords, which allows remote authenticated users with the "administer bad behavior" permission to obtain sensitive information by reading a log file...

4CVSS6.1AI score0.01218EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/11/12 4:0 p.m.23 views

CVE-2014-8735

The Bad Behavior module 6.x-2.x before 6.x-2.2216 and 7.x-2.x before 7.x-2.2216 for Drupal logs usernames and passwords, which allows remote authenticated users with the "administer bad behavior" permission to obtain sensitive information by reading a log file...

5.8AI score0.01218EPSS
Exploits0References3
CVE
CVE
added 2014/11/12 4:0 p.m.42 views

CVE-2014-8735

The Drupal Bad Behavior module (versions 6.x-2.x prior to 6.x-2.2216 and 7.x-2.x prior to 7.x-2.2216) allows information disclosure by logging usernames and passwords. This occurs because remote authenticated users with the "administer bad behavior" permission can read the module’s logs to obtain...

4CVSS5.9AI score0.01218EPSS
Exploits0References3Affected Software1
Drupal
Drupal
added 2014/10/22 12:0 a.m.25 views

SA-CONTRIB-2014-100 - Bad Behavior - Information Disclosure

This module enables you to to target any malicious software directed at a Web site, whether it be a spambot, ill-designed search engine bot, or system crackers. It blocks such access and then logs their attempts. Information Disclosure The module doesn't sufficiently sanitize log data, allowing...

4CVSS6.4AI score0.01218EPSS
Exploits0References11
Rows per page
Query Builder