Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4412

Malware in sbrugna...

4CVSS6.4AI score0.01129EPSS
Exploits0References4
CNVD
CNVD
added 2015/06/17 12:0 a.m.2 views

Drupal Open Graph Importer Module Limit Bypass Vulnerability

Drupal is a free, open source content management system developed in PHP. open Graph Importer is a module that supports back-end administrators or other users to import content from other websites using open graph meta tags. A security vulnerability exists in the Drupal Open Graph Importer module...

4CVSS6.8AI score0.01129EPSS
Exploits0References1
Prion
Prion
added 2015/06/15 2:59 p.m.12 views

Open redirect

The Open Graph Importer ogtagimporter 7.x-1.x for Drupal does not properly check the create permission for content types created during import, which allows remote authenticated users to bypass intended restrictions by leveraging the "import ogtagimporter" permission...

4CVSS6.8AI score0.01129EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/06/15 2:0 p.m.22 views

CVE-2015-4389

The Open Graph Importer ogtagimporter 7.x-1.x for Drupal does not properly check the create permission for content types created during import, which allows remote authenticated users to bypass intended restrictions by leveraging the "import ogtagimporter" permission...

6.3AI score0.01129EPSS
Exploits0References3
CVE
CVE
added 2015/06/15 2:0 p.m.38 views

CVE-2015-4389

The CVE concerns the Drupal contributed module Open Graph Importer (og_tag_importer) in the 7.x-1.x line. The root cause is improper enforcement of the create permission on destination content types during import, enabling remote authenticated users with the import_og_tag_importer permission to b...

4CVSS6.5AI score0.01129EPSS
Exploits0References3Affected Software1
Drupal
Drupal
added 2015/04/01 12:0 a.m.16 views

Open Graph Importer - Moderately Critical - Access bypass - Unsupported - SA-CONTRIB-2015-092

This module enables you to import content from a web page by scraping its Open Graph data. The module doesn't sufficiently check for "create" permission to the content type that is configured as the destination for imported content, thus allowing a user with the "import ogtagimporter" permission ...

4CVSS6.4AI score0.01129EPSS
Exploits0References11
Rows per page
Query Builder