Lucene search
K

4 matches found

NVD
NVD
added 2017/09/13 4:29 p.m.17 views

CVE-2015-7880

The Entity Registration module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to obtain sensitive event registration information by leveraging the "Register other accounts" permission and knowledge of usernames...

4.3CVSS4.5AI score0.01392EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/09/13 4:0 p.m.29 views

CVE-2015-7880

The Entity Registration module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to obtain sensitive event registration information by leveraging the "Register other accounts" permission and knowledge of usernames...

4.5AI score0.01392EPSS
Exploits0References4
CVE
CVE
added 2017/09/13 4:0 p.m.56 views

CVE-2015-7880

Affected product: Drupal Entity Registration module (7.x-1.x) prior to 7.x-1.5. Vulnerability: information disclosure where remote attackers could obtain sensitive event registration data by abusing the "Register other accounts" permission and knowledge of usernames. Impact: unauthorized disclosu...

4.3CVSS4.5AI score0.01392EPSS
Exploits0References4Affected Software1
Drupal
Drupal
added 2015/10/07 12:0 a.m.25 views

Entity Registration - Moderately Critical - Information Disclosure - SA-CONTRIB-2015-155

This module enables you to manage registrations for events. The module doesn't sufficiently protect information about who is registered to attend specific events when anonymous users are granted a permission that is commonly recommended when allowing anonymous registrations. This vulnerability is...

4.3CVSS4.5AI score0.01392EPSS
Exploits0References11
Rows per page
Query Builder