Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2008-4792

The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 does not properly validate unspecified content fields of an internal Drupal form, which allows remote authenticated users to bypass intended access restrictions via modified field values.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.6%
CVSS Severity
CVSS v2 Score 6.0
Products affected by CVE-2008-4792
  • Drupal » Drupal » Version: 5.0
    cpe:2.3:a:drupal:drupal:5.0
  • Drupal » Drupal » Version: 5.1
    cpe:2.3:a:drupal:drupal:5.1
  • Drupal » Drupal » Version: 5.10
    cpe:2.3:a:drupal:drupal:5.10
  • Drupal » Drupal » Version: 5.2
    cpe:2.3:a:drupal:drupal:5.2
  • Drupal » Drupal » Version: 5.3
    cpe:2.3:a:drupal:drupal:5.3
  • Drupal » Drupal » Version: 5.4
    cpe:2.3:a:drupal:drupal:5.4
  • Drupal » Drupal » Version: 5.5
    cpe:2.3:a:drupal:drupal:5.5
  • Drupal » Drupal » Version: 5.6
    cpe:2.3:a:drupal:drupal:5.6
  • Drupal » Drupal » Version: 5.7
    cpe:2.3:a:drupal:drupal:5.7
  • Drupal » Drupal » Version: 5.8
    cpe:2.3:a:drupal:drupal:5.8
  • Drupal » Drupal » Version: 5.9
    cpe:2.3:a:drupal:drupal:5.9
  • Drupal » Drupal » Version: 6.0
    cpe:2.3:a:drupal:drupal:6.0
  • Drupal » Drupal » Version: 6.1
    cpe:2.3:a:drupal:drupal:6.1
  • Drupal » Drupal » Version: 6.2
    cpe:2.3:a:drupal:drupal:6.2
  • Drupal » Drupal » Version: 6.3
    cpe:2.3:a:drupal:drupal:6.3
  • Drupal » Drupal » Version: 6.4
    cpe:2.3:a:drupal:drupal:6.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved