CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2013-4365

Malware in sbrugna...

2.6CVSS6.4AI score0.00283EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-4172

Malware in sbrugna...

4CVSS6.2AI score0.00199EPSS

Exploits0References4

Prion•added 2014/07/19 6:55 p.m.•10 views

Design/Logic Flaw

The Entity API module 7.x-1.x before 7.x-1.2 for Drupal does not properly restrict access to node comments, which allows remote authenticated users to read the comments via unspecified vectors. NOTE: this identifier was SPLIT per ADT5 due to different researcher organizations. CVE-2013-7391 was...

4CVSS6.4AI score0.00283EPSS

Exploits0References3Affected Software1

NVD•added 2014/05/13 3:55 p.m.•6 views

CVE-2013-4504

The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers to read arbitrary node comments via a crafted URL...

2.6CVSS6.6AI score0.00283EPSS

Exploits0References3

Prion•added 2014/05/13 3:55 p.m.•8 views

Code injection

The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers to read arbitrary node comments via a crafted URL...

2.6CVSS7.1AI score0.00283EPSS

Exploits0References3Affected Software1

CVE•added 2014/05/13 3:0 p.m.•34 views

CVE-2013-4504

The CVE-2013-4504 affects the Monster Menus module for Drupal 7.x-1.x (versions before 7.x-1.15). The issue allows remote attackers to read arbitrary node comments by crafting a URL, bypassing per-node comment visibility permissions. Impact is unauthenticated information disclosure of comments fo...

2.6CVSS6.8AI score0.00283EPSS

Exploits0References3Affected Software1