CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6384

Multiple cross-site request forgery (CSRF) vulnerabilities in Comment Mail 5.x before 5.x-1.1, a module for Drupal, allow remote attackers to hijack the authentication of administrators.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.1%

CVSS Severity

CVSS v2 Score 6.8

References

http://drupal.org/node/339495
http://osvdb.org/50206
http://secunia.com/advisories/32905
https://exchange.xforce.ibmcloud.com/vulnerabilities/46944
http://drupal.org/node/339495
http://osvdb.org/50206
http://secunia.com/advisories/32905
https://exchange.xforce.ibmcloud.com/vulnerabilities/46944

Products affected by CVE-2008-6384

Drupal » Comment Mail » Version: 5.x-0.1

cpe:2.3:a:drupal:comment_mail:5.x-0.1
Drupal » Comment Mail » Version: 5.x-1.0

cpe:2.3:a:drupal:comment_mail:5.x-1.0
Drupal » Comment Mail » Version: 5.x-1.x

cpe:2.3:a:drupal:comment_mail:5.x-1.x

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6384

Products

Pricing

Contact Us