CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-5161

Malware in sbrugna...

5.8CVSS6.4AI score0.00374EPSS

Exploits0References3

Prion•added 2014/12/01 4:59 p.m.•9 views

Code injection

The Fasttoggle module 7.x-1.3 and 7.x-1.4 for Drupal allows remote attackers to block or unblock an account via a crafted user status link...

5.8CVSS7.2AI score0.00374EPSS

Exploits0References2Affected Software1

NVD•added 2014/12/01 4:59 p.m.•7 views

CVE-2014-5268

The Fasttoggle module 7.x-1.3 and 7.x-1.4 for Drupal allows remote attackers to block or unblock an account via a crafted user status link...

5.8CVSS6.7AI score0.00374EPSS

Exploits0References2

CVE•added 2014/12/01 4:0 p.m.•42 views

CVE-2014-5268

CVE-2014-5268 affects the Drupal contributed module Fasttoggle (7.x-1.3 and 7.x-1.4). The advisory confirms an access-control flaw: remote attackers can block or unblock user accounts via a crafted user status link, due to a rewrite of the access control that mishandles the user status (allow/blo...

5.8CVSS6.9AI score0.00374EPSS

Exploits0References2Affected Software1

Cvelist•added 2014/12/01 4:0 p.m.•15 views

CVE-2014-5268

The Fasttoggle module 7.x-1.3 and 7.x-1.4 for Drupal allows remote attackers to block or unblock an account via a crafted user status link...

6.7AI score0.00374EPSS

Exploits0References2

Drupal•added 2014/08/06 12:0 a.m.•13 views

SA-CONTRIB-2014-076 - Fasttoggle - Access bypass

This module enables you to quickly toggle various user, node and field related settings via ajax links. The recent 7.x-1.3 and 1.4 releases of the module include a rewrite of the access control which doesn't correctly implement support for the user status allow/block link. This vulnerability is...

5.8CVSS6.4AI score0.00374EPSS

Exploits0References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by