Lucene search
+L

28 matches found

OSV
OSV
added 2022/02/12 12:0 a.m.16 views

GHSA-QFHG-M6R8-XXPJ Incorrect Authorization in Drupal core

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

6.5CVSS6.4AI score0.00805EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/02/11 4:15 p.m.26 views

CVE-2020-13676

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

6.5CVSS6.6AI score0.00805EPSS
Exploits0References2
OSV
OSV
added 2022/02/11 4:15 p.m.6 views

UBUNTU-CVE-2020-13676

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed...

6.5CVSS6.6AI score0.00805EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/02/11 12:0 a.m.5 views

PT-2022-8503 · Drupal · Drupal Quickedit Module

Name of the Vulnerable Software and Affected Versions: Drupal QuickEdit module affected versions not specified Description: The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the...

6.5CVSS6.1AI score0.00805EPSS
Exploits0References12
OSV
OSV
added 2021/09/15 3:23 p.m.2 views

DRUPAL-CORE-2021-009

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed. This advisory is not covered by Drupal Steward...

6.5CVSS6.6AI score0.00805EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/09/15 12:0 a.m.5 views

Drupal 访问控制错误漏洞

Drupal is an open source content management system developed in PHP by the Drupal community. An access control error vulnerability exists in Drupal, where a remote user can bypass implemented security restrictions and read certain field data...

6.5CVSS6.5AI score0.00805EPSS
Exploits0References5
NVD
NVD
added 2016/01/08 7:59 p.m.26 views

CVE-2015-7554

The TIFFVGetField function in tifdir.c in libtiff 4.0.6 allows attackers to cause a denial of service invalid memory write and crash or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image...

9.8CVSS8.3AI score0.04187EPSS
Exploits1References13
UbuntuCve
UbuntuCve
added 2016/01/08 12:0 a.m.27 views

CVE-2015-7554

The TIFFVGetField function in tifdir.c in libtiff 4.0.6 allows attackers to cause a denial of service invalid memory write and crash or possibly have unspecified other impact via crafted field data in an extension tag in a TIFF image...

9.8CVSS6.9AI score0.04187EPSS
Exploits1References4
Rows per page
Query Builder