Vulnerability Details CVE-2013-4500
The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the "view any quiz results" or "view results for own quiz" permission to delete arbitrary results via the delete option.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.7%
CVSS Severity
CVSS v2 Score 4.9
Products affected by CVE-2013-4500
-
cpe:2.3:a:quiz_module_project:quiz:6.x-4.0
-
cpe:2.3:a:quiz_module_project:quiz:6.x-4.1
-
cpe:2.3:a:quiz_module_project:quiz:6.x-4.2
-
cpe:2.3:a:quiz_module_project:quiz:6.x-4.3
-
cpe:2.3:a:quiz_module_project:quiz:6.x-4.4