CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2122

The Edit Limit module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict access to comments, which allows remote authenticated users with the "edit comments" permission to edit arbitrary comments of other users via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://osvdb.org/93725
http://seclists.org/fulldisclosure/2013/May/208
http://secunia.com/advisories/53556
http://www.openwall.com/lists/oss-security/2013/05/29/9
http://www.securityfocus.com/bid/60209
https://drupal.org/node/2006188
https://drupal.org/node/2007048
https://exchange.xforce.ibmcloud.com/vulnerabilities/84630
http://osvdb.org/93725
http://seclists.org/fulldisclosure/2013/May/208
http://secunia.com/advisories/53556
http://www.openwall.com/lists/oss-security/2013/05/29/9
http://www.securityfocus.com/bid/60209
https://drupal.org/node/2006188
https://drupal.org/node/2007048
https://exchange.xforce.ibmcloud.com/vulnerabilities/84630

Products affected by CVE-2013-2122

Drupal » Drupal » Version: N/A

cpe:2.3:a:drupal:drupal:-
Quade » Edit Limit » Version: 7.x-1.0

cpe:2.3:a:quade:edit_limit:7.x-1.0
Quade » Edit Limit » Version: 7.x-1.1

cpe:2.3:a:quade:edit_limit:7.x-1.1
Quade » Edit Limit » Version: 7.x-1.2

cpe:2.3:a:quade:edit_limit:7.x-1.2
Quade » Edit Limit » Version: 7.x-1.x

cpe:2.3:a:quade:edit_limit:7.x-1.x

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2122

Products

Pricing

Contact Us